Merge pull request #100 from aidangarske/multi-compiler-workflow

douzzer · web-flow · commit 585c05417223 · 2025-04-15T22:51:48.000-05:00
multi-compiler.yml - CI Github workflow
diff --git a/.github/workflows/multi-compiler.yml b/.github/workflows/multi-compiler.yml
@@ -0,0 +1,114 @@
+name: Multi-Compiler Tests
+
+# START OF COMMON SECTION
+on:
+  push:
+    branches: [ 'master', 'main', 'release/**' ]
+  pull_request:
+    branches: [ '*' ]
+
+concurrency:
+  group: ${{ github.workflow }}-${{ github.ref }}
+  cancel-in-progress: true
+# END OF COMMON SECTION
+
+jobs:
+  build_wolfprovider:
+    name: Build with ${{ matrix.CC }}
+    runs-on: ${{ matrix.OS }}
+    timeout-minutes: 20
+    strategy:
+      fail-fast: false
+      matrix:
+        include:
+          - CC: gcc-9
+            CXX: g++-9
+            OS: ubuntu-latest
+            wolfssl_ref: master
+          - CC: gcc-10
+            CXX: g++-10
+            OS: ubuntu-latest
+            wolfssl_ref: master
+          - CC: gcc-10
+            CXX: g++-10
+            OS: ubuntu-latest
+            wolfssl_ref: v5.7.4-stable
+          - CC: gcc-11
+            CXX: g++-11
+            OS: ubuntu-latest
+            wolfssl_ref: master
+          - CC: gcc-12
+            CXX: g++-12
+            OS: ubuntu-latest
+            wolfssl_ref: master
+          - CC: clang-12
+            CXX: clang++-12
+            OS: ubuntu-22.04
+            wolfssl_ref: master
+          - CC: clang-13
+            CXX: clang++-13
+            OS: ubuntu-22.04
+            wolfssl_ref: master
+          - CC: clang-14
+            CXX: clang++-14
+            OS: ubuntu-latest
+            wolfssl_ref: master
+          - CC: clang-15
+            CXX: clang++-15
+            OS: ubuntu-latest
+            wolfssl_ref: master
+    steps:
+      - name: Checkout wolfProvider
+        uses: actions/checkout@v4
+
+      - name: Install dependencies
+        run: |
+          sudo apt-get update
+          sudo apt-get install -y ${{ matrix.CC }} ${{ matrix.CXX }} automake libtool
+
+      # Check if this version of wolfssl/wolfprovider has already been built,
+      # mark to cache these items on post if we do end up building
+      - name: Checking wolfSSL/wolfProvider in cache
+        uses: actions/cache@v4
+        id: wolfprov-cache
+        with:
+          path: |
+            wolfssl-source
+            wolfssl-install
+            wolfprov-install
+            provider.conf
+
+          key: wolfprov-${{ matrix.wolfssl_ref }}-${{ matrix.CC }}-${{ github.sha }}
+          lookup-only: true
+
+      # If wolfssl/wolfprovider have not yet been built, pull ossl from cache
+      - name: Checking OpenSSL in cache
+        if: steps.wolfprov-cache.outputs.cache-hit != 'true'
+        uses: actions/cache@v4
+        id: openssl-cache
+        with:
+          path: |
+            openssl-source
+            openssl-install
+
+          key: ossl-${{ matrix.CC }}-depends
+
+      # If not yet built this version, build it now
+      - name: Build wolfProvider
+        if: steps.wolfprov-cache.outputs.cache-hit != 'true'
+        env:
+          CC: ${{ matrix.CC }}
+          CXX: ${{ matrix.CXX }}
+        run: |
+          WOLFSSL_TAG=${{ matrix.wolfssl_ref }} ./scripts/build-wolfprovider.sh
+
+      - name: Print errors
+        if: ${{ failure() }}
+        run: |
+          if [ -f test-suite.log ]; then
+            cat test-suite.log
+          fi
+          if [ -f config.log ]; then
+            cat config.log
+          fi
+
diff --git a/src/wp_aes_aead.c b/src/wp_aes_aead.c
@@ -819,7 +819,7 @@ static int wp_aesgcm_get_rand_iv(wp_AeadCtx* ctx, unsigned char* out,
     #ifdef WOLFSSL_AESGCM_STREAM
         int rc;
 
-        rc = wc_AesGcmInit(&ctx->aes, NULL, 0, ctx->iv, ctx->ivLen);
+        rc = wc_AesGcmInit(&ctx->aes, NULL, 0, ctx->iv, (word32)ctx->ivLen);
         if (rc != 0) {
             ok = 0;
         }
@@ -1199,7 +1199,7 @@ static int wp_aesgcm_stream_update(wp_AeadCtx *ctx, unsigned char *out,
 
     if ((!done) && ok) {
         if (ctx->ivState == IV_STATE_BUFFERED) {
-            rc = wc_AesGcmInit(&ctx->aes, NULL, 0, ctx->iv, ctx->ivLen);
+            rc = wc_AesGcmInit(&ctx->aes, NULL, 0, ctx->iv, (word32)ctx->ivLen);
             if (rc != 0) {
                 ok = 0;
             }
diff --git a/src/wp_rsa_kmgmt.c b/src/wp_rsa_kmgmt.c
@@ -2224,7 +2224,7 @@ static int wp_rsa_decode_enc_pki(wp_Rsa* rsa, unsigned char* data, word32 len,
     }
     if (ok) {
         /* Decrypt to encoded private key. */
-        int ret = wc_DecryptPKCS8Key(data, len, password, passwordSz);
+        int ret = wc_DecryptPKCS8Key(data, len, password, (int)passwordSz);
         if (ret <= 0) {
             ok = 0;
         }
@@ -2596,7 +2596,7 @@ static int wp_rsa_encode_spki(const wp_Rsa* rsa, unsigned char* keyData,
     int ok = 1;
     int ret;
 
-    ret = wc_RsaKeyToPublicDer((RsaKey*)&rsa->key, keyData, *keyLen);
+    ret = wc_RsaKeyToPublicDer((RsaKey*)&rsa->key, keyData, (word32)*keyLen);
     if (ret <= 0) {
         ok = 0;
     }
@@ -2692,7 +2692,7 @@ static int wp_rsa_encode_pub(const wp_Rsa* rsa, unsigned char* keyData,
     }
 #else
     /* TODO: Encodes with header. Strip it off. */
-    ret = wc_RsaKeyToPublicDer((RsaKey*)&rsa->key, keyData, *keyLen);
+    ret = wc_RsaKeyToPublicDer((RsaKey*)&rsa->key, keyData, (word32)*keyLen);
     if (ret <= 0) {
         ok = 0;
     }
@@ -2879,8 +2879,8 @@ static int wp_rsa_encode_enc_pki_size(const wp_RsaEncDecCtx* ctx,
     ok = wp_rsa_encode_pki_size(rsa, &len, RSA_ALGO_ID(ctx));
     if (ok) {
         /* Get encrypted encode private key. */
-        if (wc_EncryptPKCS8Key(fakeData, len, NULL, &outSz, "", 0, WP_PKCS5,
-                WP_PBES2, ctx->cipher, fakeSalt, sizeof(fakeSalt),
+        if (wc_EncryptPKCS8Key(fakeData, (word32)len, NULL, &outSz, "", 0,
+                WP_PKCS5, WP_PBES2, ctx->cipher, fakeSalt, sizeof(fakeSalt),
                 WP_PKCS12_ITERATIONS_DEFAULT, wp_provctx_get_rng(ctx->provCtx),
                 NULL) != LENGTH_ONLY_E) {
             ok = 0;
@@ -2914,7 +2914,7 @@ static int wp_rsa_encode_enc_pki(const wp_RsaEncDecCtx* ctx, const wp_Rsa* rsa,
 {
     int ok = 1;
     size_t len;
-    word32 outSz = *keyLen;
+    word32 outSz = (word32)*keyLen;
     byte salt[WP_MAX_SALT_SIZE];
     int saltLen = 16;
     char password[1024];
@@ -2947,10 +2947,10 @@ static int wp_rsa_encode_enc_pki(const wp_RsaEncDecCtx* ctx, const wp_Rsa* rsa,
     }
     if (ok) {
         /* Encrypt encoded key - in and out buffers must be different. */
-        if (wc_EncryptPKCS8Key(encodedKey, len, keyData, &outSz, password,
-                passwordSz, WP_PKCS5, WP_PBES2, ctx->cipher, salt, saltLen,
-                WP_PKCS12_ITERATIONS_DEFAULT, wp_provctx_get_rng(ctx->provCtx),
-                NULL) <= 0) {
+        if (wc_EncryptPKCS8Key(encodedKey, (word32)len, keyData, &outSz,
+                password, (word32)passwordSz, WP_PKCS5, WP_PBES2, ctx->cipher,
+                salt, saltLen, WP_PKCS12_ITERATIONS_DEFAULT,
+                wp_provctx_get_rng(ctx->provCtx), NULL) <= 0) {
             ok = 0;
         }
         else {
diff --git a/src/wp_rsa_sig.c b/src/wp_rsa_sig.c
@@ -867,7 +867,7 @@ static int wp_rsa_sign_x931(wp_RsaSigCtx* ctx, unsigned char* sig,
         }
     }
     if (ok) {
-        rc = mp_read_unsigned_bin(&toMp, sig, *sigLen);
+        rc = mp_read_unsigned_bin(&toMp, sig, (word32)*sigLen);
         if (rc != MP_OKAY) {
             ok = 0;
         }
@@ -882,7 +882,7 @@ static int wp_rsa_sign_x931(wp_RsaSigCtx* ctx, unsigned char* sig,
             ok = 0;
         }
         else if (mp_cmp(&toMp, &nMinusTo) == MP_GT) {
-            rc = mp_to_unsigned_bin_len(&nMinusTo, sig, *sigLen);
+            rc = mp_to_unsigned_bin_len(&nMinusTo, sig, (int)*sigLen);
             if (rc != MP_OKAY) {
                 ok = 0;
             }
diff --git a/test/test_rsa.c b/test/test_rsa.c
@@ -856,7 +856,7 @@ int test_rsa_get_params(void *data)
         }
     }
     if (err == 0) {
-        eRet = BN_bin2bn(e, params[1].return_size, NULL);
+        eRet = BN_bin2bn(e, (int)params[1].return_size, NULL);
         if (eRet == NULL) {
             err = 1;
         }

Original file line number	Diff line number	Diff line change
`@@ -867,7 +867,7 @@ static int wp_rsa_sign_x931(wp_RsaSigCtx* ctx, unsigned char* sig,`
`867`	`867`	`}`
`868`	`868`	`}`
`869`	`869`	`if (ok) {`
`870`		`- rc = mp_read_unsigned_bin(&toMp, sig, *sigLen);`
	`870`	`+ rc = mp_read_unsigned_bin(&toMp, sig, (word32)*sigLen);`
`871`	`871`	`if (rc != MP_OKAY) {`
`872`	`872`	`ok = 0;`
`873`	`873`	`}`
`@@ -882,7 +882,7 @@ static int wp_rsa_sign_x931(wp_RsaSigCtx* ctx, unsigned char* sig,`
`882`	`882`	`ok = 0;`
`883`	`883`	`}`
`884`	`884`	`else if (mp_cmp(&toMp, &nMinusTo) == MP_GT) {`
`885`		`- rc = mp_to_unsigned_bin_len(&nMinusTo, sig, *sigLen);`
	`885`	`+ rc = mp_to_unsigned_bin_len(&nMinusTo, sig, (int)*sigLen);`
`886`	`886`	`if (rc != MP_OKAY) {`
`887`	`887`	`ok = 0;`
`888`	`888`	`}`
Original file line number	Diff line number	Diff line change
`@@ -856,7 +856,7 @@ int test_rsa_get_params(void *data)`
`856`	`856`	`}`
`857`	`857`	`}`
`858`	`858`	`if (err == 0) {`
`859`		`- eRet = BN_bin2bn(e, params[1].return_size, NULL);`
	`859`	`+ eRet = BN_bin2bn(e, (int)params[1].return_size, NULL);`
`860`	`860`	`if (eRet == NULL) {`
`861`	`861`	`err = 1;`
`862`	`862`	`}`