Skip to content

Add missing goto for checking encapsulation invariants. #121562

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 1 commit into from
Nov 13, 2025
Merged

Add missing goto for checking encapsulation invariants. #121562

merged 1 commit into from
Nov 13, 2025

Conversation

@vcsjones
Copy link
Member

@vcsjones vcsjones commented Nov 12, 2025

When we encapsulate something with ML-KEM on OpenSSL, we were checking that the amount written is what we expected, but a missing goto caused it to be marked as a success.

This isn't really a reliability problem since we already know how much encapsulation sizes are, we're just making sure OpenSSL and the managed side agree on it.

@vcsjones
Add missing goto for checking encapsulation invariants.
27cb755 
When we encapsulate something with ML-KEM on OpenSSL, we were checking that the amount written is what we expected, but a missing `goto` caused it to be marked as a success.

This isn't really a reliability problem since we already know how much encapsulation sizes are, we're just making sure OpenSSL and the managed side agree on it.
@vcsjones vcsjones added this to the 11.0.0 milestone Nov 12, 2025
@vcsjones vcsjones self-assigned this Nov 12, 2025
Copilot AI review requested due to automatic review settings November 12, 2025 22:26
@dotnet-policy-service
Copy link
Contributor

dotnet-policy-service bot commented Nov 12, 2025

Tagging subscribers to this area: @dotnet/area-system-security, @bartonjs, @vcsjones
See info in area-owners.md if you want to be subscribed.

Copilot finished reviewing on behalf of vcsjones November 12, 2025 22:28
Copilot AI reviewed Nov 12, 2025
View reviewed changes
Copy link
Contributor

Copilot AI left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Pull Request Overview

This PR fixes a bug in the ML-KEM encapsulation error handling where a missing goto statement caused an error condition to be incorrectly reported as success. When the encapsulation output lengths didn't match expected values, the code would set ret = -1 but then immediately proceed to set ret = 1, causing the function to return success despite the validation failure.

Key Changes:

  • Added missing goto done; statement after setting error code in length validation check

This was referenced Nov 13, 2025
Open
Open
Open
Open
@vcsjones
Copy link
Member Author

vcsjones commented Nov 13, 2025

/ba-g Android timeouts and Android is not affected by this change.

@vcsjones vcsjones merged commit 1fb92aa into dotnet:main Nov 13, 2025
101 of 110 checks passed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

Copilot code review Copilot Copilot left review comments

@bartonjs bartonjs bartonjs approved these changes

Assignees

@vcsjones vcsjones

Labels

area-System.Security

Projects

None yet

Milestone

11.0.0

Development

Successfully merging this pull request may close these issues.

2 participants

@vcsjones @bartonjs