Xen project Mailing List

Re: [PATCH] subdom: Fix -Werror=address failure in tmp_emulator

To: Jason Andryuk <jandryuk@xxxxxxxxx>, Jan Beulich <jbeulich@xxxxxxxx>

From: Andrew Cooper <andrew.cooper3@xxxxxxxxxx>

Date: Tue, 8 Aug 2023 12:22:49 +0100

Arc-authentication-results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=citrix.com; dmarc=pass action=none header.from=citrix.com; dkim=pass header.d=citrix.com; arc=none

Arc-message-signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=3Ri+ATDYnV0KthEWTlZPa/ReZoN6eTbSdoj9jjZdprA=; b=gdFupiA3O3OYZCXmEgX49+oe6wIlPb9BUjn/DjfSn3UWGat+2e2MCHGC7PNdaZIXOEhbRDbbuRUJfn0jp1a+Dz7G5nn3i542s3iP4si8WWQUvBECh087pJvq+9+MWfsFJLImVlRK+GozfAbT01kFmxRW/1XqkbUM6d7cx+79msPfLVy3NUmYHkl6a+wyOUmGdZ1CqXZ34X4hBFP5q86iFolSWXh8QnjpYNV4AvbmEO07IHPNRT0xXEHSLgpUCww0/mvN/lEyIRcTfdcjWEHM9aLii+2WRcpRv7Urrdde5p42YEVirmaJIcjo7MSre6g9Kq3LKnhRjqtUanaM5Ym/xQ==

Arc-seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=VjLNGFstjlmeInOCMJDTuXpVW0x+wP1zgJ77E501Gv3AEa7bx6Xlyfq0ovfoV2M+S2hP7kVGXhhSQ0ee1jXljntw7sg+yItzReNU0UX4iGMcVSpeL8a2fvsYqvrSh6mU0YrUoKUarLDXxcoZDfTd8AQB4NykW4p/lJ/9HDDF8wuxbHI+n1BQHFO+z1LTdqiXtCCfl+Nr1su7nKwpDT2SK9HmbNyd4Uggz32X82g8r/iZk0KjwCQpIZdKrifDqmqAzNo5viyVCJ1TMarfIceCreqcs75qITprcME8ybXaUWPew/xj3vL2qDMN/hjAmJPdei4BdQ4CM8YbxJickzPZ7A==

Authentication-results: dkim=none (message not signed) header.d=none;dmarc=none action=none header.from=citrix.com;

Cc: George Dunlap <George.Dunlap@xxxxxxxxxxxxx>, Stefano Stabellini <sstabellini@xxxxxxxxxx>, Wei Liu <wl@xxxxxxx>, Julien Grall <julien@xxxxxxx>, Juergen Gross <jgross@xxxxxxxx>, Marek Marczykowski-Górecki <marmarek@xxxxxxxxxxxxxxxxxxxxxx>, Daniel Smith <dpsmith@xxxxxxxxxxxxxxxxxxxx>, Christopher Clark <christopher.w.clark@xxxxxxxxx>, Xen-devel <xen-devel@xxxxxxxxxxxxxxxxxxxx>

Delivery-date: Tue, 08 Aug 2023 11:23:15 +0000

Ironport-data: A9a23:XtZTz6rM9b524wHllfkfLOiaT+leBmJOZRIvgKrLsJaIsI4StFCzt garIBnUaPnYYzbyfo90a43k9xkBvJHQzNJhSQtv+yFmQSwV9puZCYyVIHmrMnLJJKUvbq7FA +Y2MYCccZ9uHhcwgj/3b9ANeFEljfngqoLUUbKCYWYpA1c/Ek/NsDo788YhmIlknNOlNA2Ev NL2sqX3NUSsnjV5KQr40YrawP9UlKq04GpwUmAWP6gR5weOzylNVfrzGInqR5fGatgMdgKFb 76rIIGRpgvx4xorA9W5pbf3GmVirmn6ZFXmZtJ+AsBOszAazsAA+v9T2Mk0MC+7vw6hjdFpo OihgLTrIesf0g8gr8xGO/VQO3kW0aSrY9YrK1Dn2SCY5xWun3cBX5yCpaz5VGEV0r8fPI1Ay RAXABwMaBu4of2I/IiEb7dMnZsBdsDXIKpK7xmMzRmBZRonabbqZvySoPV+g3I3jM0IGuvCb c0EbzYpdA7HfxBEJlYQDtQ5gfusgX78NTZfrTp5p4JuuzSVkFM3j+CraYKEEjCJbZw9ckKwj 2TK5WnmRDodM8SS02Gt+XOwnO7f2yj8Xer+EZXhr68w3wTNnjN75Bs+Z1GFkN2Fm2GESssEc 24p6xEPsbgN6xn+JjX6d1jiyJKehTYeUtxcCfwn6ymCz6PV50CSAW1sZjxLZcEitcQ2bSc3z VLPlNTsbRR0q6GcQ3+Z8raSrBuxNDITIGtEYjULJSMa5/HzrYd1iQjAJv5hDaq0g9vdCTz2h TeQo0AWhboJitUQ/76m5l2BiDWpzrDMRxQw7x/aXUqk6B14f4+vY4G06Vnd4u1EJYzfRV6E1 FAIg9Ob7fwOJZiVmTaRXf4WG7W0+/eCNiaaillqd7Eq9y6s4GKkZYBd+ndhYkxtO9wHUTDsa U7X/whW4fd7LHasKKN6fY+1I8Ar1rT7U8ToUOjOadhDaYQ3cxWIlByCfmaV1mHp1UIqzqc2P M7Ddd72VC5LT6N60DCxWuERl6cxwTwzzn/SQpa9yAm71b2ZZzieTrJt3EayU93VJZis+G39m +uz/ePTo/mDeIUSuhXqzLM=

Ironport-hdrordr: A9a23:bC9r26A3BYNRmo/lHeixsseALOsnbusQ8zAXPh9KJCC9I/bzqy nxpp8mPH/P5wr5lktQ4OxoS5PwJk80kqQFnLX5XI3SJjUO3VHFEGgM1/qA/9SNIVyaygcZ79 YaT0EcMqyPMbEZt6bHCWCDer5PoeVvsprY/ds2p00dMj2CAJsQizuRZDzrdHGeCDM2Z6bQQ/ Gnl7Z6TnebCDwqhoPRPAh2Y8Hz4/nw0L72ax8PABAqrCGIkDOT8bb/VzSIwxsEVDtL4LE6tU zIiRbw6KmPu+yyjka07R6e071m3P/ajvdTDs2FjcYYbh3qlwaTfYxkH5GSoTwvp+mryVAy1P 3BuQ0pMchf427YOku1vRzu8Q/91ytG0Q6u9XaoxV/Y5eDpTjMzDMRMwapfbxvi8kIl+PVxyr hC0W61v4deSUqoplW22/H4EzVR0makq3srluAey1RZTIslcbdU6agS5llcHpssFD/zrKonDO 5tJsfB4+s+SyLQU1np+k1UhPC8VHU6GRmLBmAEp8yuyjBT2Et0ykMJrfZv6UsoxdYYcd1p9u 7EOqNnmPVlVckNd59wA+8HXI+eFnHNaQikChPTHX3XUIU8f17doZ/+57s4oMuwfoYT8Zc0kJ PdFHtFqG8JfV70A8Hm5uwLzvn0ehT+Yd3R8LAa23Ag0YeMAIYDcBfzBmzGqvHQ4Mn2WabgKr GO0JE/OY6WEYKhI/cO4+TEYeggFZAvarxlhj8FYSP/nivqEPydigWJSoebGJPdVRAZZ0jYPl wvGBDOGeQo1DHfZpa/ummfZ0/Q

List-id: Xen developer discussion <xen-devel.lists.xenproject.org>

On 07/08/2023 7:56 pm, Jason Andryuk wrote: > On Fri, Aug 4, 2023 at 7:36 AM Jan Beulich <jbeulich@xxxxxxxx> wrote: >> On 04.08.2023 11:29, Andrew Cooper wrote: >>> On 04/08/2023 8:23 am, Jan Beulich wrote: >>>> On 03.08.2023 22:36, Andrew Cooper wrote: >>>>> The opensuse-tumbleweed build jobs currently fail with: >>>>> >>>>> /builds/xen-project/xen/stubdom/tpm_emulator-x86_64/crypto/rsa.c: In >>>>> function 'rsa_private': >>>>> /builds/xen-project/xen/stubdom/tpm_emulator-x86_64/crypto/rsa.c:56:7: >>>>> error: the comparison will always evaluate as 'true' for the address of >>>>> 'p' will never be NULL [-Werror=address] >>>>> 56 | if (!key->p || !key->q || !key->u) { >>>>> | ^ >>>>> In file included from >>>>> /builds/xen-project/xen/stubdom/tpm_emulator-x86_64/crypto/rsa.c:17: >>>>> /builds/xen-project/xen/stubdom/tpm_emulator-x86_64/crypto/rsa.h:28:12: >>>>> note: 'p' declared here >>>>> 28 | tpm_bn_t p; >>>>> | ^ >>>>> >>>>> This is because all tpm_bn_t's are 1-element arrays (of either a GMP or >>>>> OpenSSL BIGNUM flavour). The author was probably meaning to do value >>>>> checks, >>>>> but that's not what the code does. >>>> Looking at the code, I'm not sure about this. There could as well have been >>>> the intention to allow pointers there, then permitting them to be left at >>>> NULL. Who knows where that code came from originally. > The logic looks to be that if p, q, or u are not present, then perform > a regular modular exponentiation. If they are available, then perform > an optimized Chinese Remainder Theorem exponentiation. > > In that light, it's written as if pointers were expected. However, > the code history doesn't show pointers for p/q/u. An RSA key can't > have 0 for p/q/u, so value checks don't make sense. Hmmm, I suppose a > 0 value could make sense to indicate uninitialization. > > tpm_rsa_import_key() and tpm_rsa_generate_key() set p, q, & u. > tpm_rsa_copy_key() copies those over. So it should be okay to use > this patch to just always use the CRT path. It would be safer to > check for 0 though, I suppose. Ok, I'll adjust the commit message. >>> Do you agree that the patch is no function change, or are you saying >>> that you think I got some of my analysis wrong? >> Oh, I'm sorry for the potentially ambiguous reply: I agree there's no >> functional >> change. I'm merely not sure about your guessing of value checks being meant. > Agreed - no functional change. > > Reviewed-by: Jason Andryuk <jandryuk@xxxxxxxxx> Thanks. I'll put it in like this to fix CI, then do ... > > Disabling vtpm is also reasonable given the reasons Andrew outlined. ... this separately. ~Andrew

©2013 Xen Project, A Linux Foundation Collaborative Project. All Rights Reserved.
Linux Foundation is a registered trademark of The Linux Foundation.
Xen Project is a trademark of The Linux Foundation.