Skip to content

Fenrir fixes#80

Merged
douzzer merged 5 commits intowolfSSL:masterfrom
JeremiahM37:fenrir-fixes
Apr 17, 2026
Merged

Fenrir fixes#80
douzzer merged 5 commits intowolfSSL:masterfrom
JeremiahM37:fenrir-fixes

Conversation

@JeremiahM37
Copy link
Copy Markdown
Contributor

@JeremiahM37 JeremiahM37 commented Mar 31, 2026
edited
Loading

Fixes F-968, F-969, F-970, F-972, F-973, F-974, F-975, F-976, F-977, F-978, F-985, F-986, F-1204, F-1205, F-1206, F-1207, F-1208, F-1209, F-1213, F-1651, F-1652, F-1653, F-1654, F-1655, F-1666, F-1667, F-1668, F-1670, F-1675

  • Correct sem_wait macro member access, lock_init error cleanup to call sem_destroy instead of sem_init, and shared/mutex lock timeout recovery to update thread accounting and write_lock_holder.
  • Move shared lock acquisition before default_event NULL check to prevent TOCTOU race, and unlock shared lock on event lookup failure in both dispatch-by-id and dispatch-by-route.
  • Free correct allocation in addr_family_clone error path, use REMOTE instead of LOCAL in route match scoring right-side comparison, change purge loop continue to break to prevent infinite spin, cast derogatory/commendable counts to signed before subtraction, and add parent_table NULL check in dispatch-by-route.
  • Remove duplicate unbracketed IPv6 fprintf, redirect render_flags unknown-flag output from stderr to f, and redirect render_endpoint wildcard output from stdout to f.
  • Reorder json_feed overflow loop to read input before incrementing off, free keys/stack buffers on error returns in DOM dump and dict_clean, add missing error check and remove erroneous break in dict clone paths, and add SIZE_MAX overflow guards before nesting stack and DOM path reallocation doubling.
  • Use WOLFSENTRY_KV_JSON type in user_value_get_json, return user_defined_successes instead of user_defined_errors for success codes, add overflow checks before duration conversion cascade multiplication, fetch new_route_table from cloned context in config commit, use IPPROTO_ICMPV6 in ICMPv6 filter, swap inverted deadline expiry return values, and add void* type to malloc debug ret declaration.

@JeremiahM37 JeremiahM37 marked this pull request as ready for review March 31, 2026 17:09
@JeremiahM37 JeremiahM37 assigned wolfSSL-Bot and unassigned douzzer Apr 1, 2026
@douzzer douzzer self-assigned this Apr 1, 2026
@douzzer douzzer self-requested a review April 1, 2026 22:55
dgarske
dgarske previously requested changes Apr 8, 2026
View reviewed changes
Comment thread src/routes.c Outdated
Comment thread src/json/centijson_sax.c
@dgarske dgarske assigned JeremiahM37 and unassigned douzzer Apr 8, 2026
@JeremiahM37 JeremiahM37 assigned dgarske and unassigned JeremiahM37 Apr 13, 2026
@dgarske dgarske assigned wolfSSL-Bot and unassigned dgarske and wolfSSL-Bot Apr 13, 2026
@dgarske dgarske self-requested a review April 13, 2026 16:38
dgarske
dgarske reviewed Apr 13, 2026
View reviewed changes
Copy link
Copy Markdown
Contributor

@dgarske dgarske left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

🐺 Skoll Code Review

Overall recommendation: APPROVE
Findings: 4 total — 1 posted, 3 skipped

Posted findings

  • [Medium] Node leaked in dict_clean early error returnsrc/json/centijson_value.c:1797-1809
Skipped findings
  • [Medium] Test coverage gap for duration overflow checks
  • [Medium] Test coverage gap for lock timeout recovery thread accounting
  • [Low] Initializing this_zerospan_offset to 0 is correct but the variable could use a comment

Review generated by Skoll via openclaw

Comment thread src/json/centijson_value.c
@dgarske dgarske assigned JeremiahM37 and unassigned wolfSSL-Bot Apr 13, 2026
@JeremiahM37 JeremiahM37 force-pushed the fenrir-fixes branch 4 times, most recently from 3b71fba to c41cdec Compare April 13, 2026 18:43
douzzer
douzzer approved these changes Apr 17, 2026
View reviewed changes
Copy link
Copy Markdown
Collaborator

@douzzer douzzer left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Good batch of fixes!

passes make check-all.

@douzzer douzzer merged commit 066f3e2 into wolfSSL:master Apr 17, 2026
2 checks passed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@dgarske dgarske dgarske left review comments

@douzzer douzzer douzzer approved these changes

Assignees

@wolfSSL-Bot wolfSSL-Bot

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

4 participants

@JeremiahM37 @dgarske @douzzer @wolfSSL-Bot