Skip to content

Avoid invalid gcc 14.3 warning about array bounds in mbedtls_xor #73

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
wants to merge 1 commit into
base: zephyr
Choose a base branch
from
Open

Avoid invalid gcc 14.3 warning about array bounds in mbedtls_xor #73

wants to merge 1 commit into from

Conversation

keith-packard
Copy link

The combination of the multi-byte loop with the single byte loop confuses GCC 14.3's array bounds checker. When the loop size is constant, check to see if it is a multiple of the multi-byte size and bail early. As this will be evaluated at compile time, there should be no run-time cost.

@github-actions github-actions bot mentioned this pull request Jul 11, 2025
Open
@tomi-font tomi-font requested a review from valeriosetti July 22, 2025 10:40
tomi-font
tomi-font requested changes Jul 22, 2025
View reviewed changes
Copy link
Collaborator

@tomi-font tomi-font left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Could you rather first make a PR in upstream Mbed TLS and then cherry pick it here?

@keith-packard
Copy link
Author

Could you rather first make a PR in upstream Mbed TLS and then cherry pick it here?

Mbed-TLS/mbedtls#10318

@tomi-font
Copy link
Collaborator

Mbed-TLS/mbedtls#10318

Thanks! If you want to get this merged here before it's merged upstream then please add a reference to the upstream PR (e.g. PR #) in the commit message. Otherwise we can just wait and cherry pick the upstream commit (with -x) once it's merged.

@keith-packard
Copy link
Author

Mbed-TLS/mbedtls#10318

Thanks! If you want to get this merged here before it's merged upstream then please add a reference to the upstream PR (e.g. PR #) in the commit message. Otherwise we can just wait and cherry pick the upstream commit (with -x) once it's merged.

It's blocking SDK version 0.18, so we should probably not wait (the fix is pretty easy to review in isolation).

@keith-packard
Avoid invalid gcc 14.3 warning about array bounds in mbedtls_xor
2c49239 
The combination of the multi-byte loop with the single byte loop
confuses GCC 14.3's array bounds checker. When the loop size is
constant, check to see if it is a multiple of the multi-byte size and
bail early. As this will be evaluated at compile time, there should be
no run-time cost.

This change has been submitted upstream:

Mbed-TLS/mbedtls#10318

Signed-off-by: Keith Packard <[email protected]>
This was referenced Aug 11, 2025
Open
Open
@github-actions github-actions bot mentioned this pull request Aug 11, 2025
Open
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@valeriosetti valeriosetti valeriosetti approved these changes

@tomi-font tomi-font tomi-font approved these changes

@d3zd3z d3zd3z Awaiting requested review from d3zd3z

@ceolin ceolin Awaiting requested review from ceolin

@wearyzen wearyzen Awaiting requested review from wearyzen

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
3 participants
@keith-packard @tomi-font @valeriosetti