Remove unnecessary assert in PK11MessageDigest.c #278

cipherboy · 2019-10-02T15:22:32Z

This ASSERT_OUTOFMEM(env) is incorrect for two reasons:

When JSS_RefByteArray detects a zero-length result, it returns
false but doesn't throw an exception. It is up to the caller to
handle that as they wish. In our case, we can safely skip the
PK11_DigestOp call.
When length < offset+len (and JSS_RefByteArray exits
successfully), we won't have thrown an exception.

This only shows up in debug builds; release builds aren't affected.

This bug was detected by CI after merging the CMAC changes (#259).

Signed-off-by: Alexander Scheel <[email protected]>

This ASSERT_OUTOFMEM(env) is incorrect for two reasons: 1. When JSS_RefByteArray detects a zero-length result, it returns false but doesn't throw an exception. It is up to the caller to handle that as they wish. In our case, we can safely skip the PK11_DigestOp call. 2. When length < offset+len (and JSS_RefByteArray exits successfully), we won't have thrown an exception. This only shows up in debug builds; release builds aren't affected. Signed-off-by: Alexander Scheel <[email protected]>

cipherboy added Bug Something isn't working primitives Changes which affect cryptographic or NSS primitives; low-level work labels Oct 2, 2019

cipherboy added this to the 4.6.2 milestone Oct 2, 2019

cipherboy self-assigned this Oct 2, 2019

cipherboy merged commit 0fd96dd into dogtagpki:master Oct 2, 2019

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Remove unnecessary assert in PK11MessageDigest.c #278

Remove unnecessary assert in PK11MessageDigest.c #278

cipherboy commented Oct 2, 2019

Remove unnecessary assert in PK11MessageDigest.c #278

Remove unnecessary assert in PK11MessageDigest.c #278

Conversation

cipherboy commented Oct 2, 2019