<!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN" "http://www.w3.org/TR/REC-html40/loose.dtd">

<html lang="en">

<head>

<meta content="text/html; charset=US-ASCII" http-equiv="Content-Type">

<title>

GitLab

</title>

<style>img {

max-width: 100%; height: auto;

}

</style>

</head>

<body>

<div class="content">

<table border="0" cellpadding="0" cellspacing="0" style="width: 100%; border-collapse: separate; border-spacing: 0; margin: 0 auto;">

<tbody>

<tr>

<td style="font-family: 'Helvetica Neue',Helvetica,Arial,sans-serif; overflow: hidden;" align="left" bgcolor="#ffffff">

<table border="0" cellpadding="0" cellspacing="0" style="width: 100%; border-collapse: separate; border-spacing: 0;">

<tbody>

<tr>

<td style="color: #333333; border-bottom-width: 1px; border-bottom-color: #ededed; border-bottom-style: solid; font-size: 15px; font-weight: bold; line-height: 1.4; padding: 20px 0;">

Merge request <a href="https://gitlab.com/gnutls/gnutls/-/merge_requests/1367">!1367</a> was reviewed by <a href="https://gitlab.com/dueno">Daiki Ueno</a>

</td>

</tr>

<tr>

<td style="overflow: hidden; font-size: 14px; line-height: 1.4; display: grid;">

<p style="color: #777777;">

<a href="https://gitlab.com/dueno">Daiki Ueno</a>

started a new

discussion on <a href="https://gitlab.com/gnutls/gnutls/-/merge_requests/1367#note_533965196">lib/x509/x509_ext.c</a>:

</p>

<table>

<tr class="line_holder new" id="">

<td class="old_line diff-line-num new" data-linenumber="3467" style="width: 35px; color: rgba(0,0,0,0.3); border-right-width: 1px; border-right-color: #c7f0d2; border-right-style: solid; padding: 0 5px;" align="right" bgcolor="#ddfbe6">

</td>

<td class="new_line diff-line-num new" data-linenumber="3615" style="width: 35px; color: rgba(0,0,0,0.3); border-right-width: 1px; border-right-color: #c7f0d2; border-right-style: solid; padding: 0 5px;" align="right" bgcolor="#ddfbe6">

3615

</td>

<td class="line_content new" style="padding-left: 0.5em; padding-right: 0.5em;" bgcolor="#ecfdf0">

<pre style="margin: 0;">+<span id="LC3615" class="line" lang="c"><span class="p">{</span></span>

</pre>

</td>

</tr>

<tr class="line_holder new" id="">

<td class="old_line diff-line-num new" data-linenumber="3467" style="width: 35px; color: rgba(0,0,0,0.3); border-right-width: 1px; border-right-color: #c7f0d2; border-right-style: solid; padding: 0 5px;" align="right" bgcolor="#ddfbe6">

</td>

<td class="new_line diff-line-num new" data-linenumber="3616" style="width: 35px; color: rgba(0,0,0,0.3); border-right-width: 1px; border-right-color: #c7f0d2; border-right-style: solid; padding: 0 5px;" align="right" bgcolor="#ddfbe6">

3616

</td>

<td class="line_content new" style="padding-left: 0.5em; padding-right: 0.5em;" bgcolor="#ecfdf0">

<pre style="margin: 0;">+<span id="LC3616" class="line" lang="c">   <span class="k" style="font-weight: 600;">switch</span> <span class="p">(</span><span class="n" style="color: #333;">sigalg</span><span class="p">)</span> <span class="p">{</span></span>

</pre>

</td>

</tr>

<tr class="line_holder new" id="">

<td class="old_line diff-line-num new" data-linenumber="3467" style="width: 35px; color: rgba(0,0,0,0.3); border-right-width: 1px; border-right-color: #c7f0d2; border-right-style: solid; padding: 0 5px;" align="right" bgcolor="#ddfbe6">

</td>

<td class="new_line diff-line-num new" data-linenumber="3617" style="width: 35px; color: rgba(0,0,0,0.3); border-right-width: 1px; border-right-color: #c7f0d2; border-right-style: solid; padding: 0 5px;" align="right" bgcolor="#ddfbe6">

3617

</td>

<td class="line_content new" style="padding-left: 0.5em; padding-right: 0.5em;" bgcolor="#ecfdf0">

<pre style="margin: 0;">+<span id="LC3617" class="line" lang="c">   <span class="k" style="font-weight: 600;">case</span> <span class="n" style="color: #333;">GNUTLS_SIGN_RSA_MD5</span><span class="p">:</span></span>

</pre>

</td>

</tr>

</table>

<div style="border-bottom-width: 1px; border-bottom-color: #ededed; border-bottom-style: solid;">

<p dir="auto">Is this code path performance critical? If not, I would suggest using a table (variable) instead of <code>switch</code>s in this function and <code>get_sigalg*</code>.</p>

</div>

<p style="color: #777777;">

<a href="https://gitlab.com/dueno">Daiki Ueno</a>

started a new

discussion on <a href="https://gitlab.com/gnutls/gnutls/-/merge_requests/1367#note_533965197">lib/x509/x509_ext.c</a>:

</p>

<table>

<tr class="line_holder new" id="">

<td class="old_line diff-line-num new" data-linenumber="3467" style="width: 35px; color: rgba(0,0,0,0.3); border-right-width: 1px; border-right-color: #c7f0d2; border-right-style: solid; padding: 0 5px;" align="right" bgcolor="#ddfbe6">

</td>

<td class="new_line diff-line-num new" data-linenumber="3699" style="width: 35px; color: rgba(0,0,0,0.3); border-right-width: 1px; border-right-color: #c7f0d2; border-right-style: solid; padding: 0 5px;" align="right" bgcolor="#ddfbe6">

3699

</td>

<td class="line_content new" style="padding-left: 0.5em; padding-right: 0.5em;" bgcolor="#ecfdf0">

<pre style="margin: 0;">+<span id="LC3699" class="line" lang="c">   <span class="n" style="color: #333;">memcpy</span><span class="p">(</span><span class="n" style="color: #333;">sct</span><span class="o" style="font-weight: 600;">-></span><span class="n" style="color: #333;">logid</span><span class="p">,</span> <span class="n" style="color: #333;">ptr</span><span class="p">,</span> <span class="n" style="color: #333;">SCT_V1_LOGID_SIZE</span><span class="p">);</span></span>

</pre>

</td>

</tr>

<tr class="line_holder new" id="">

<td class="old_line diff-line-num new" data-linenumber="3467" style="width: 35px; color: rgba(0,0,0,0.3); border-right-width: 1px; border-right-color: #c7f0d2; border-right-style: solid; padding: 0 5px;" align="right" bgcolor="#ddfbe6">

</td>

<td class="new_line diff-line-num new" data-linenumber="3700" style="width: 35px; color: rgba(0,0,0,0.3); border-right-width: 1px; border-right-color: #c7f0d2; border-right-style: solid; padding: 0 5px;" align="right" bgcolor="#ddfbe6">

3700

</td>

<td class="line_content new" style="padding-left: 0.5em; padding-right: 0.5em;" bgcolor="#ecfdf0">

<pre style="margin: 0;">+<span id="LC3700" class="line" lang="c">   <span class="n" style="color: #333;">ptr</span> <span class="o" style="font-weight: 600;">+=</span> <span class="n" style="color: #333;">SCT_V1_LOGID_SIZE</span><span class="p">;</span></span>

</pre>

</td>

</tr>

<tr class="line_holder new" id="">

<td class="old_line diff-line-num new" data-linenumber="3467" style="width: 35px; color: rgba(0,0,0,0.3); border-right-width: 1px; border-right-color: #c7f0d2; border-right-style: solid; padding: 0 5px;" align="right" bgcolor="#ddfbe6">

</td>

<td class="new_line diff-line-num new" data-linenumber="3701" style="width: 35px; color: rgba(0,0,0,0.3); border-right-width: 1px; border-right-color: #c7f0d2; border-right-style: solid; padding: 0 5px;" align="right" bgcolor="#ddfbe6">

3701

</td>

<td class="line_content new" style="padding-left: 0.5em; padding-right: 0.5em;" bgcolor="#ecfdf0">

<pre style="margin: 0;">+<span id="LC3701" class="line" lang="c">   <span class="n" style="color: #333;">length</span> <span class="o" style="font-weight: 600;">-=</span> <span class="n" style="color: #333;">SCT_V1_LOGID_SIZE</span><span class="p">;</span></span>

</pre>

</td>

</tr>

</table>

<div style="border-bottom-width: 1px; border-bottom-color: #ededed; border-bottom-style: solid;">

<p dir="auto">Although I don't see any use of it under <code>lib/x509</code>, perhaps we could use <code>DECR_LENGTH_RET</code>?</p>

</div>

<p style="color: #777777;">

<a href="https://gitlab.com/dueno">Daiki Ueno</a>

started a new

discussion on <a href="https://gitlab.com/gnutls/gnutls/-/merge_requests/1367#note_533965198">lib/x509/x509_ext.c</a>:

</p>

<table>

<tr class="line_holder new" id="">

<td class="old_line diff-line-num new" data-linenumber="3467" style="width: 35px; color: rgba(0,0,0,0.3); border-right-width: 1px; border-right-color: #c7f0d2; border-right-style: solid; padding: 0 5px;" align="right" bgcolor="#ddfbe6">

</td>

<td class="new_line diff-line-num new" data-linenumber="3716" style="width: 35px; color: rgba(0,0,0,0.3); border-right-width: 1px; border-right-color: #c7f0d2; border-right-style: solid; padding: 0 5px;" align="right" bgcolor="#ddfbe6">

3716

</td>

<td class="line_content new" style="padding-left: 0.5em; padding-right: 0.5em;" bgcolor="#ecfdf0">

<pre style="margin: 0;">+<span id="LC3716" class="line" lang="c"><span class="cm" style="color: #998; font-style: italic;">        * Check that there are actually no extensions - the following two bytes should be zero.</span></span>

</pre>

</td>

</tr>

<tr class="line_holder new" id="">

<td class="old_line diff-line-num new" data-linenumber="3467" style="width: 35px; color: rgba(0,0,0,0.3); border-right-width: 1px; border-right-color: #c7f0d2; border-right-style: solid; padding: 0 5px;" align="right" bgcolor="#ddfbe6">

</td>

<td class="new_line diff-line-num new" data-linenumber="3717" style="width: 35px; color: rgba(0,0,0,0.3); border-right-width: 1px; border-right-color: #c7f0d2; border-right-style: solid; padding: 0 5px;" align="right" bgcolor="#ddfbe6">

3717

</td>

<td class="line_content new" style="padding-left: 0.5em; padding-right: 0.5em;" bgcolor="#ecfdf0">

<pre style="margin: 0;">+<span id="LC3717" class="line" lang="c"><span class="cm" style="color: #998; font-style: italic;">        */</span></span>

</pre>

</td>

</tr>

<tr class="line_holder new" id="">

<td class="old_line diff-line-num new" data-linenumber="3467" style="width: 35px; color: rgba(0,0,0,0.3); border-right-width: 1px; border-right-color: #c7f0d2; border-right-style: solid; padding: 0 5px;" align="right" bgcolor="#ddfbe6">

</td>

<td class="new_line diff-line-num new" data-linenumber="3718" style="width: 35px; color: rgba(0,0,0,0.3); border-right-width: 1px; border-right-color: #c7f0d2; border-right-style: solid; padding: 0 5px;" align="right" bgcolor="#ddfbe6">

3718

</td>

<td class="line_content new" style="padding-left: 0.5em; padding-right: 0.5em;" bgcolor="#ecfdf0">

<pre style="margin: 0;">+<span id="LC3718" class="line" lang="c">   <span class="k" style="font-weight: 600;">if</span> <span class="p">(</span><span class="o" style="font-weight: 600;">*</span><span class="n" style="color: #333;">ptr</span> <span class="o" style="font-weight: 600;">!=</span> <span class="mi" style="color: #099;">0</span> <span class="o" style="font-weight: 600;">||</span> <span class="o" style="font-weight: 600;">*</span><span class="p">(</span><span class="n" style="color: #333;">ptr</span><span class="o" style="font-weight: 600;">+</span><span class="mi" style="color: #099;">1</span><span class="p">)</span> <span class="o" style="font-weight: 600;">!=</span> <span class="mi" style="color: #099;">0</span><span class="p">)</span> <span class="p">{</span></span>

</pre>

</td>

</tr>

</table>

<div style="border-bottom-width: 1px; border-bottom-color: #ededed; border-bottom-style: solid;">

<p dir="auto">Shouldn't we check <code>length >= 2</code> before dereferencing <code>ptr</code> and <code>ptr + 1</code>?</p>

</div>

<p style="color: #777777;">

<a href="https://gitlab.com/dueno">Daiki Ueno</a>

started a new

discussion on <a href="https://gitlab.com/gnutls/gnutls/-/merge_requests/1367#note_533965200">lib/x509/x509_ext.c</a>:

</p>

<table>

<tr class="line_holder new" id="">

<td class="old_line diff-line-num new" data-linenumber="3467" style="width: 35px; color: rgba(0,0,0,0.3); border-right-width: 1px; border-right-color: #c7f0d2; border-right-style: solid; padding: 0 5px;" align="right" bgcolor="#ddfbe6">

</td>

<td class="new_line diff-line-num new" data-linenumber="3741" style="width: 35px; color: rgba(0,0,0,0.3); border-right-width: 1px; border-right-color: #c7f0d2; border-right-style: solid; padding: 0 5px;" align="right" bgcolor="#ddfbe6">

3741

</td>

<td class="line_content new" style="padding-left: 0.5em; padding-right: 0.5em;" bgcolor="#ecfdf0">

<pre style="margin: 0;">+<span id="LC3741" class="line" lang="c">   <span class="n" style="color: #333;">length</span> <span class="o" style="font-weight: 600;">-=</span> <span class="mi" style="color: #099;">2</span><span class="p">;</span></span>

</pre>

</td>

</tr>

<tr class="line_holder new" id="">

<td class="old_line diff-line-num new" data-linenumber="3467" style="width: 35px; color: rgba(0,0,0,0.3); border-right-width: 1px; border-right-color: #c7f0d2; border-right-style: solid; padding: 0 5px;" align="right" bgcolor="#ddfbe6">

</td>

<td class="new_line diff-line-num new" data-linenumber="3742" style="width: 35px; color: rgba(0,0,0,0.3); border-right-width: 1px; border-right-color: #c7f0d2; border-right-style: solid; padding: 0 5px;" align="right" bgcolor="#ddfbe6">

3742

</td>

<td class="line_content new" style="padding-left: 0.5em; padding-right: 0.5em;" bgcolor="#ecfdf0">

<pre style="margin: 0;">+<span id="LC3742" class="line" lang="c"></span>

</pre>

</td>

</tr>

<tr class="line_holder new" id="">

<td class="old_line diff-line-num new" data-linenumber="3467" style="width: 35px; color: rgba(0,0,0,0.3); border-right-width: 1px; border-right-color: #c7f0d2; border-right-style: solid; padding: 0 5px;" align="right" bgcolor="#ddfbe6">

</td>

<td class="new_line diff-line-num new" data-linenumber="3743" style="width: 35px; color: rgba(0,0,0,0.3); border-right-width: 1px; border-right-color: #c7f0d2; border-right-style: solid; padding: 0 5px;" align="right" bgcolor="#ddfbe6">

3743

</td>

<td class="line_content new" style="padding-left: 0.5em; padding-right: 0.5em;" bgcolor="#ecfdf0">

<pre style="margin: 0;">+<span id="LC3743" class="line" lang="c">   <span class="n" style="color: #333;">sct</span><span class="o" style="font-weight: 600;">-></span><span class="n" style="color: #333;">sigalg</span> <span class="o" style="font-weight: 600;">=</span> <span class="n" style="color: #333;">get_sigalg</span><span class="p">(</span><span class="n" style="color: #333;">hash_algo</span><span class="p">,</span> <span class="n" style="color: #333;">sig_algo</span><span class="p">);</span></span>

</pre>

</td>

</tr>

</table>

<div style="border-bottom-width: 1px; border-bottom-color: #ededed; border-bottom-style: solid;">

<p dir="auto"><code>get_sigalg</code> can return an error code outside of the <code>gnutls_signature_algorithm_t</code> enum range, so I suspect some static analyzers would complain this part. I suggest rewriting this to:</p>

<pre class="code highlight js-syntax-highlight c" lang="c" v-pre="true" style="background-color: #fff; font-family: monospace; font-size: 90%; -premailer-cellpadding: 0; -premailer-cellspacing: 0; -premailer-width: 100%; color: #998; font-style: italic; margin: 0;"><code><span id="LC1" class="line" lang="c"><span class="n" style="color: #333;">ret</span> <span class="o" style="font-weight: 600;">=</span> <span class="n" style="color: #333;">get_sigalg</span><span class="p">(</span><span class="n" style="color: #333;">hash_algo</span><span class="p">,</span> <span class="n" style="color: #333;">sig_algo</span><span class="p">);</span></span>

<span id="LC2" class="line" lang="c"><span class="k" style="font-weight: 600;">if</span> <span class="p">(</span><span class="n" style="color: #333;">ret</span> <span class="o" style="font-weight: 600;"><</span> <span class="mi" style="color: #099;">0</span><span class="p">)</span> <span class="p">{</span></span>

<span id="LC3" class="line" lang="c">        <span class="k" style="font-weight: 600;">goto</span> <span class="n" style="color: #333;">cleanup</span><span class="p">;</span></span>

<span id="LC4" class="line" lang="c"><span class="p">}</span></span>

<span id="LC5" class="line" lang="c"><span class="n" style="color: #333;">sct</span><span class="o" style="font-weight: 600;">-></span><span class="n" style="color: #333;">sigalg</span> <span class="o" style="font-weight: 600;">=</span> <span class="n" style="color: #333;">ret</span><span class="p">;</span></span></code></pre>

</div>

<p style="color: #777777;">

<a href="https://gitlab.com/dueno">Daiki Ueno</a>

started a new

discussion on <a href="https://gitlab.com/gnutls/gnutls/-/merge_requests/1367#note_533965202">lib/x509/x509_ext.c</a>:

</p>

<table>

<tr class="line_holder new" id="">

<td class="old_line diff-line-num new" data-linenumber="3467" style="width: 35px; color: rgba(0,0,0,0.3); border-right-width: 1px; border-right-color: #c7f0d2; border-right-style: solid; padding: 0 5px;" align="right" bgcolor="#ddfbe6">

</td>

<td class="new_line diff-line-num new" data-linenumber="3749" style="width: 35px; color: rgba(0,0,0,0.3); border-right-width: 1px; border-right-color: #c7f0d2; border-right-style: solid; padding: 0 5px;" align="right" bgcolor="#ddfbe6">

3749

</td>

<td class="line_content new" style="padding-left: 0.5em; padding-right: 0.5em;" bgcolor="#ecfdf0">

<pre style="margin: 0;">+<span id="LC3749" class="line" lang="c"></span>

</pre>

</td>

</tr>

<tr class="line_holder new" id="">

<td class="old_line diff-line-num new" data-linenumber="3467" style="width: 35px; color: rgba(0,0,0,0.3); border-right-width: 1px; border-right-color: #c7f0d2; border-right-style: solid; padding: 0 5px;" align="right" bgcolor="#ddfbe6">

</td>

<td class="new_line diff-line-num new" data-linenumber="3750" style="width: 35px; color: rgba(0,0,0,0.3); border-right-width: 1px; border-right-color: #c7f0d2; border-right-style: solid; padding: 0 5px;" align="right" bgcolor="#ddfbe6">

3750

</td>

<td class="line_content new" style="padding-left: 0.5em; padding-right: 0.5em;" bgcolor="#ecfdf0">

<pre style="margin: 0;">+<span id="LC3750" class="line" lang="c">   <span class="cm" style="color: #998; font-style: italic;">/* Signature, length and content */</span></span>

</pre>

</td>

</tr>

<tr class="line_holder new" id="">

<td class="old_line diff-line-num new" data-linenumber="3467" style="width: 35px; color: rgba(0,0,0,0.3); border-right-width: 1px; border-right-color: #c7f0d2; border-right-style: solid; padding: 0 5px;" align="right" bgcolor="#ddfbe6">

</td>

<td class="new_line diff-line-num new" data-linenumber="3751" style="width: 35px; color: rgba(0,0,0,0.3); border-right-width: 1px; border-right-color: #c7f0d2; border-right-style: solid; padding: 0 5px;" align="right" bgcolor="#ddfbe6">

3751

</td>

<td class="line_content new" style="padding-left: 0.5em; padding-right: 0.5em;" bgcolor="#ecfdf0">

<pre style="margin: 0;">+<span id="LC3751" class="line" lang="c">   <span class="n" style="color: #333;">sig_length</span> <span class="o" style="font-weight: 600;">=</span> <span class="n" style="color: #333;">_gnutls_read_uint16</span><span class="p">(</span><span class="n" style="color: #333;">ptr</span><span class="p">);</span></span>

</pre>

</td>

</tr>

</table>

<div style="border-bottom-width: 1px; border-bottom-color: #ededed; border-bottom-style: solid;">

<p dir="auto">Missing <code>length >= 2</code> check before accessing <code>ptr</code>?</p>

</div>

<p style="color: #777777;">

<a href="https://gitlab.com/dueno">Daiki Ueno</a>

started a new

discussion on <a href="https://gitlab.com/gnutls/gnutls/-/merge_requests/1367#note_533965203">lib/x509/x509_ext.c</a>:

</p>

<table>

<tr class="line_holder new" id="">

<td class="old_line diff-line-num new" data-linenumber="3467" style="width: 35px; color: rgba(0,0,0,0.3); border-right-width: 1px; border-right-color: #c7f0d2; border-right-style: solid; padding: 0 5px;" align="right" bgcolor="#ddfbe6">

</td>

<td class="new_line diff-line-num new" data-linenumber="3788" style="width: 35px; color: rgba(0,0,0,0.3); border-right-width: 1px; border-right-color: #c7f0d2; border-right-style: solid; padding: 0 5px;" align="right" bgcolor="#ddfbe6">

3788

</td>

<td class="line_content new" style="padding-left: 0.5em; padding-right: 0.5em;" bgcolor="#ecfdf0">

<pre style="margin: 0;">+<span id="LC3788" class="line" lang="c">   <span class="k" style="font-weight: 600;">struct</span> <span class="n" style="color: #333;">ct_sct_st</span> <span class="o" style="font-weight: 600;">*</span><span class="n" style="color: #333;">new_scts</span><span class="p">;</span></span>

</pre>

</td>

</tr>

<tr class="line_holder new" id="">

<td class="old_line diff-line-num new" data-linenumber="3467" style="width: 35px; color: rgba(0,0,0,0.3); border-right-width: 1px; border-right-color: #c7f0d2; border-right-style: solid; padding: 0 5px;" align="right" bgcolor="#ddfbe6">

</td>

<td class="new_line diff-line-num new" data-linenumber="3789" style="width: 35px; color: rgba(0,0,0,0.3); border-right-width: 1px; border-right-color: #c7f0d2; border-right-style: solid; padding: 0 5px;" align="right" bgcolor="#ddfbe6">

3789

</td>

<td class="line_content new" style="padding-left: 0.5em; padding-right: 0.5em;" bgcolor="#ecfdf0">

<pre style="margin: 0;">+<span id="LC3789" class="line" lang="c"></span>

</pre>

</td>

</tr>

<tr class="line_holder new" id="">

<td class="old_line diff-line-num new" data-linenumber="3467" style="width: 35px; color: rgba(0,0,0,0.3); border-right-width: 1px; border-right-color: #c7f0d2; border-right-style: solid; padding: 0 5px;" align="right" bgcolor="#ddfbe6">

</td>

<td class="new_line diff-line-num new" data-linenumber="3790" style="width: 35px; color: rgba(0,0,0,0.3); border-right-width: 1px; border-right-color: #c7f0d2; border-right-style: solid; padding: 0 5px;" align="right" bgcolor="#ddfbe6">

3790

</td>

<td class="line_content new" style="padding-left: 0.5em; padding-right: 0.5em;" bgcolor="#ecfdf0">

<pre style="margin: 0;">+<span id="LC3790" class="line" lang="c">   <span class="n" style="color: #333;">new_scts</span> <span class="o" style="font-weight: 600;">=</span> <span class="n" style="color: #333;">gnutls_realloc</span><span class="p">(</span><span class="o" style="font-weight: 600;">*</span><span class="n" style="color: #333;">scts</span><span class="p">,</span> <span class="p">(</span><span class="o" style="font-weight: 600;">*</span><span class="n" style="color: #333;">size</span> <span class="o" style="font-weight: 600;">+</span> <span class="mi" style="color: #099;">1</span><span class="p">)</span> <span class="o" style="font-weight: 600;">*</span> <span class="k" style="font-weight: 600;">sizeof</span><span class="p">(</span><span class="k" style="font-weight: 600;">struct</span> <span class="n" style="color: #333;">ct_sct_st</span><span class="p">));</span></span>

</pre>

</td>

</tr>

</table>

<div style="border-bottom-width: 1px; border-bottom-color: #ededed; border-bottom-style: solid;">

<p dir="auto">Missing overflow check in multiplication (see <a href="https://gitlab.com/gnutls/gnutls/-/merge_requests/1392" data-original="!1392" data-link="false" data-link-reference="false" data-project="179611" data-merge-request="89313941" data-project-path="gnutls/gnutls" data-iid="1392" data-mr-title="build: avoid potential integer overflow in array allocation" data-reference-type="merge_request" data-container="body" data-placement="top" title="" class="gfm gfm-merge_request">!1392</a>).</p>

</div>

<p style="color: #777777;">

<a href="https://gitlab.com/dueno">Daiki Ueno</a>

started a new

discussion on <a href="https://gitlab.com/gnutls/gnutls/-/merge_requests/1367#note_533965207">lib/x509/x509_ext.c</a>:

</p>

<table>

<tr class="line_holder new" id="">

<td class="old_line diff-line-num new" data-linenumber="3467" style="width: 35px; color: rgba(0,0,0,0.3); border-right-width: 1px; border-right-color: #c7f0d2; border-right-style: solid; padding: 0 5px;" align="right" bgcolor="#ddfbe6">

</td>

<td class="new_line diff-line-num new" data-linenumber="3799" style="width: 35px; color: rgba(0,0,0,0.3); border-right-width: 1px; border-right-color: #c7f0d2; border-right-style: solid; padding: 0 5px;" align="right" bgcolor="#ddfbe6">

3799

</td>

<td class="line_content new" style="padding-left: 0.5em; padding-right: 0.5em;" bgcolor="#ecfdf0">

<pre style="margin: 0;">+<span id="LC3799" class="line" lang="c"><span class="p">}</span></span>

</pre>

</td>

</tr>

<tr class="line_holder new" id="">

<td class="old_line diff-line-num new" data-linenumber="3467" style="width: 35px; color: rgba(0,0,0,0.3); border-right-width: 1px; border-right-color: #c7f0d2; border-right-style: solid; padding: 0 5px;" align="right" bgcolor="#ddfbe6">

</td>

<td class="new_line diff-line-num new" data-linenumber="3800" style="width: 35px; color: rgba(0,0,0,0.3); border-right-width: 1px; border-right-color: #c7f0d2; border-right-style: solid; padding: 0 5px;" align="right" bgcolor="#ddfbe6">

3800

</td>

<td class="line_content new" style="padding-left: 0.5em; padding-right: 0.5em;" bgcolor="#ecfdf0">

<pre style="margin: 0;">+<span id="LC3800" class="line" lang="c"></span>

</pre>

</td>

</tr>

<tr class="line_holder new" id="">

<td class="old_line diff-line-num new" data-linenumber="3467" style="width: 35px; color: rgba(0,0,0,0.3); border-right-width: 1px; border-right-color: #c7f0d2; border-right-style: solid; padding: 0 5px;" align="right" bgcolor="#ddfbe6">

</td>

<td class="new_line diff-line-num new" data-linenumber="3801" style="width: 35px; color: rgba(0,0,0,0.3); border-right-width: 1px; border-right-color: #c7f0d2; border-right-style: solid; padding: 0 5px;" align="right" bgcolor="#ddfbe6">

3801

</td>

<td class="line_content new" style="padding-left: 0.5em; padding-right: 0.5em;" bgcolor="#ecfdf0">

<pre style="margin: 0;">+<span id="LC3801" class="line" lang="c"><span class="k" style="font-weight: 600;">static</span> <span class="kt" style="color: #458; font-weight: 600;">int</span> <span class="nf" style="color: #900; font-weight: 600;">_gnutls_export_ct_v1_sct</span><span class="p">(</span><span class="k" style="font-weight: 600;">const</span> <span class="k" style="font-weight: 600;">struct</span> <span class="n" style="color: #333;">ct_sct_st</span> <span class="o" style="font-weight: 600;">*</span><span class="n" style="color: #333;">sct</span><span class="p">,</span> <span class="kt" style="color: #458; font-weight: 600;">size_t</span> <span class="n" style="color: #333;">base_size</span><span class="p">,</span> <span class="kt" style="color: #458; font-weight: 600;">uint8_t</span> <span class="o" style="font-weight: 600;">*</span><span class="n" style="color: #333;">out</span><span class="p">)</span></span>

</pre>

</td>

</tr>

</table>

<div style="border-bottom-width: 1px; border-bottom-color: #ededed; border-bottom-style: solid;">

<p dir="auto">Can we assume that <code>out</code> always has enough room for writing? If so, you could add a comment why we can omit bounds-check in this function.</p>

</div>

<p style="color: #777777;">

<a href="https://gitlab.com/dueno">Daiki Ueno</a>

started a new

discussion on <a href="https://gitlab.com/gnutls/gnutls/-/merge_requests/1367#note_533965209">lib/x509/x509_ext.c</a>:

</p>

<table>

<tr class="line_holder new" id="">

<td class="old_line diff-line-num new" data-linenumber="3467" style="width: 35px; color: rgba(0,0,0,0.3); border-right-width: 1px; border-right-color: #c7f0d2; border-right-style: solid; padding: 0 5px;" align="right" bgcolor="#ddfbe6">

</td>

<td class="new_line diff-line-num new" data-linenumber="3871" style="width: 35px; color: rgba(0,0,0,0.3); border-right-width: 1px; border-right-color: #c7f0d2; border-right-style: solid; padding: 0 5px;" align="right" bgcolor="#ddfbe6">

3871

</td>

<td class="line_content new" style="padding-left: 0.5em; padding-right: 0.5em;" bgcolor="#ecfdf0">

<pre style="margin: 0;">+<span id="LC3871" class="line" lang="c">   <span class="n" style="color: #333;">ptr</span> <span class="o" style="font-weight: 600;">=</span> <span class="o" style="font-weight: 600;">&</span><span class="n" style="color: #333;">scts_content</span><span class="p">.</span><span class="n" style="color: #333;">data</span><span class="p">[</span><span class="mi" style="color: #099;">2</span><span class="p">];</span></span>

</pre>

</td>

</tr>

<tr class="line_holder new" id="">

<td class="old_line diff-line-num new" data-linenumber="3467" style="width: 35px; color: rgba(0,0,0,0.3); border-right-width: 1px; border-right-color: #c7f0d2; border-right-style: solid; padding: 0 5px;" align="right" bgcolor="#ddfbe6">

</td>

<td class="new_line diff-line-num new" data-linenumber="3872" style="width: 35px; color: rgba(0,0,0,0.3); border-right-width: 1px; border-right-color: #c7f0d2; border-right-style: solid; padding: 0 5px;" align="right" bgcolor="#ddfbe6">

3872

</td>

<td class="line_content new" style="padding-left: 0.5em; padding-right: 0.5em;" bgcolor="#ecfdf0">

<pre style="margin: 0;">+<span id="LC3872" class="line" lang="c">   <span class="k" style="font-weight: 600;">while</span> <span class="p">(</span><span class="n" style="color: #333;">length</span> <span class="o" style="font-weight: 600;">></span> <span class="mi" style="color: #099;">0</span><span class="p">)</span> <span class="p">{</span></span>

</pre>

</td>

</tr>

<tr class="line_holder new" id="">

<td class="old_line diff-line-num new" data-linenumber="3467" style="width: 35px; color: rgba(0,0,0,0.3); border-right-width: 1px; border-right-color: #c7f0d2; border-right-style: solid; padding: 0 5px;" align="right" bgcolor="#ddfbe6">

</td>

<td class="new_line diff-line-num new" data-linenumber="3873" style="width: 35px; color: rgba(0,0,0,0.3); border-right-width: 1px; border-right-color: #c7f0d2; border-right-style: solid; padding: 0 5px;" align="right" bgcolor="#ddfbe6">

3873

</td>

<td class="line_content new" style="padding-left: 0.5em; padding-right: 0.5em;" bgcolor="#ecfdf0">

<pre style="margin: 0;">+<span id="LC3873" class="line" lang="c">           <span class="n" style="color: #333;">sct_length</span> <span class="o" style="font-weight: 600;">=</span> <span class="n" style="color: #333;">_gnutls_read_uint16</span><span class="p">(</span><span class="n" style="color: #333;">ptr</span><span class="p">);</span></span>

</pre>

</td>

</tr>

</table>

<div style="border-bottom-width: 1px; border-bottom-color: #ededed; border-bottom-style: solid;">

<p dir="auto">Missing <code>length >= 2</code> check?</p>

</div>

<p style="color: #777777;">

<a href="https://gitlab.com/dueno">Daiki Ueno</a>

started a new

discussion on <a href="https://gitlab.com/gnutls/gnutls/-/merge_requests/1367#note_533965210">lib/x509/x509_ext.c</a>:

</p>

<table>

<tr class="line_holder new" id="">

<td class="old_line diff-line-num new" data-linenumber="3467" style="width: 35px; color: rgba(0,0,0,0.3); border-right-width: 1px; border-right-color: #c7f0d2; border-right-style: solid; padding: 0 5px;" align="right" bgcolor="#ddfbe6">

</td>

<td class="new_line diff-line-num new" data-linenumber="3887" style="width: 35px; color: rgba(0,0,0,0.3); border-right-width: 1px; border-right-color: #c7f0d2; border-right-style: solid; padding: 0 5px;" align="right" bgcolor="#ddfbe6">

3887

</td>

<td class="line_content new" style="padding-left: 0.5em; padding-right: 0.5em;" bgcolor="#ecfdf0">

<pre style="margin: 0;">+<span id="LC3887" class="line" lang="c">   <span class="p">}</span></span>

</pre>

</td>

</tr>

<tr class="line_holder new" id="">

<td class="old_line diff-line-num new" data-linenumber="3467" style="width: 35px; color: rgba(0,0,0,0.3); border-right-width: 1px; border-right-color: #c7f0d2; border-right-style: solid; padding: 0 5px;" align="right" bgcolor="#ddfbe6">

</td>

<td class="new_line diff-line-num new" data-linenumber="3888" style="width: 35px; color: rgba(0,0,0,0.3); border-right-width: 1px; border-right-color: #c7f0d2; border-right-style: solid; padding: 0 5px;" align="right" bgcolor="#ddfbe6">

3888

</td>

<td class="line_content new" style="padding-left: 0.5em; padding-right: 0.5em;" bgcolor="#ecfdf0">

<pre style="margin: 0;">+<span id="LC3888" class="line" lang="c"></span>

</pre>

</td>

</tr>

<tr class="line_holder new" id="">

<td class="old_line diff-line-num new" data-linenumber="3467" style="width: 35px; color: rgba(0,0,0,0.3); border-right-width: 1px; border-right-color: #c7f0d2; border-right-style: solid; padding: 0 5px;" align="right" bgcolor="#ddfbe6">

</td>

<td class="new_line diff-line-num new" data-linenumber="3889" style="width: 35px; color: rgba(0,0,0,0.3); border-right-width: 1px; border-right-color: #c7f0d2; border-right-style: solid; padding: 0 5px;" align="right" bgcolor="#ddfbe6">

3889

</td>

<td class="line_content new" style="padding-left: 0.5em; padding-right: 0.5em;" bgcolor="#ecfdf0">

<pre style="margin: 0;">+<span id="LC3889" class="line" lang="c">   <span class="n" style="color: #333;">gnutls_free</span><span class="p">(</span><span class="n" style="color: #333;">scts_content</span><span class="p">.</span><span class="n" style="color: #333;">data</span><span class="p">);</span></span>

</pre>

</td>

</tr>

</table>

<div style="border-bottom-width: 1px; border-bottom-color: #ededed; border-bottom-style: solid;">

<p dir="auto">nit: <code>_gnutls_free_datum(&scts_content)</code>.</p>

</div>

<p style="color: #777777;">

<a href="https://gitlab.com/dueno">Daiki Ueno</a>

started a new

discussion on <a href="https://gitlab.com/gnutls/gnutls/-/merge_requests/1367#note_533965211">lib/x509/x509_ext.c</a>:

</p>

<table>

<tr class="line_holder new" id="">

<td class="old_line diff-line-num new" data-linenumber="3467" style="width: 35px; color: rgba(0,0,0,0.3); border-right-width: 1px; border-right-color: #c7f0d2; border-right-style: solid; padding: 0 5px;" align="right" bgcolor="#ddfbe6">

</td>

<td class="new_line diff-line-num new" data-linenumber="3477" style="width: 35px; color: rgba(0,0,0,0.3); border-right-width: 1px; border-right-color: #c7f0d2; border-right-style: solid; padding: 0 5px;" align="right" bgcolor="#ddfbe6">

3477

</td>

<td class="line_content new" style="padding-left: 0.5em; padding-right: 0.5em;" bgcolor="#ecfdf0">

<pre style="margin: 0;">+<span id="LC3477" class="line" lang="c"><span class="k" style="font-weight: 600;">struct</span> <span class="n" style="color: #333;">gnutls_x509_ct_scts_st</span> <span class="p">{</span></span>

</pre>

</td>

</tr>

<tr class="line_holder new" id="">

<td class="old_line diff-line-num new" data-linenumber="3467" style="width: 35px; color: rgba(0,0,0,0.3); border-right-width: 1px; border-right-color: #c7f0d2; border-right-style: solid; padding: 0 5px;" align="right" bgcolor="#ddfbe6">

</td>

<td class="new_line diff-line-num new" data-linenumber="3478" style="width: 35px; color: rgba(0,0,0,0.3); border-right-width: 1px; border-right-color: #c7f0d2; border-right-style: solid; padding: 0 5px;" align="right" bgcolor="#ddfbe6">

3478

</td>

<td class="line_content new" style="padding-left: 0.5em; padding-right: 0.5em;" bgcolor="#ecfdf0">

<pre style="margin: 0;">+<span id="LC3478" class="line" lang="c">   <span class="k" style="font-weight: 600;">struct</span> <span class="n" style="color: #333;">ct_sct_st</span> <span class="o" style="font-weight: 600;">*</span><span class="n" style="color: #333;">scts</span><span class="p">;</span></span>

</pre>

</td>

</tr>

<tr class="line_holder new" id="">

<td class="old_line diff-line-num new" data-linenumber="3467" style="width: 35px; color: rgba(0,0,0,0.3); border-right-width: 1px; border-right-color: #c7f0d2; border-right-style: solid; padding: 0 5px;" align="right" bgcolor="#ddfbe6">

</td>

<td class="new_line diff-line-num new" data-linenumber="3479" style="width: 35px; color: rgba(0,0,0,0.3); border-right-width: 1px; border-right-color: #c7f0d2; border-right-style: solid; padding: 0 5px;" align="right" bgcolor="#ddfbe6">

3479

</td>

<td class="line_content new" style="padding-left: 0.5em; padding-right: 0.5em;" bgcolor="#ecfdf0">

<pre style="margin: 0;">+<span id="LC3479" class="line" lang="c">   <span class="kt" style="color: #458; font-weight: 600;">unsigned</span> <span class="kt" style="color: #458; font-weight: 600;">int</span> <span class="n" style="color: #333;">size</span><span class="p">;</span></span>

</pre>

</td>

</tr>

</table>

<div style="border-bottom-width: 1px; border-bottom-color: #ededed; border-bottom-style: solid;">

<p dir="auto">I suggest using <code>size_t</code> everywhere for sizes, unless there is a good reason.</p>

</div>

<p style="color: #777777;">

<a href="https://gitlab.com/dueno">Daiki Ueno</a>

started a new

discussion on <a href="https://gitlab.com/gnutls/gnutls/-/merge_requests/1367#note_533965212">lib/x509/x509_ext.c</a>:

</p>

<table>

<tr class="line_holder new" id="">

<td class="old_line diff-line-num new" data-linenumber="3467" style="width: 35px; color: rgba(0,0,0,0.3); border-right-width: 1px; border-right-color: #c7f0d2; border-right-style: solid; padding: 0 5px;" align="right" bgcolor="#ddfbe6">

</td>

<td class="new_line diff-line-num new" data-linenumber="3951" style="width: 35px; color: rgba(0,0,0,0.3); border-right-width: 1px; border-right-color: #c7f0d2; border-right-style: solid; padding: 0 5px;" align="right" bgcolor="#ddfbe6">

3951

</td>

<td class="line_content new" style="padding-left: 0.5em; padding-right: 0.5em;" bgcolor="#ecfdf0">

<pre style="margin: 0;">+<span id="LC3951" class="line" lang="c"></span>

</pre>

</td>

</tr>

<tr class="line_holder new" id="">

<td class="old_line diff-line-num new" data-linenumber="3467" style="width: 35px; color: rgba(0,0,0,0.3); border-right-width: 1px; border-right-color: #c7f0d2; border-right-style: solid; padding: 0 5px;" align="right" bgcolor="#ddfbe6">

</td>

<td class="new_line diff-line-num new" data-linenumber="3952" style="width: 35px; color: rgba(0,0,0,0.3); border-right-width: 1px; border-right-color: #c7f0d2; border-right-style: solid; padding: 0 5px;" align="right" bgcolor="#ddfbe6">

3952

</td>

<td class="line_content new" style="padding-left: 0.5em; padding-right: 0.5em;" bgcolor="#ecfdf0">

<pre style="margin: 0;">+<span id="LC3952" class="line" lang="c"><span class="nl">cleanup:</span></span>

</pre>

</td>

</tr>

<tr class="line_holder new" id="">

<td class="old_line diff-line-num new" data-linenumber="3467" style="width: 35px; color: rgba(0,0,0,0.3); border-right-width: 1px; border-right-color: #c7f0d2; border-right-style: solid; padding: 0 5px;" align="right" bgcolor="#ddfbe6">

</td>

<td class="new_line diff-line-num new" data-linenumber="3953" style="width: 35px; color: rgba(0,0,0,0.3); border-right-width: 1px; border-right-color: #c7f0d2; border-right-style: solid; padding: 0 5px;" align="right" bgcolor="#ddfbe6">

3953

</td>

<td class="line_content new" style="padding-left: 0.5em; padding-right: 0.5em;" bgcolor="#ecfdf0">

<pre style="margin: 0;">+<span id="LC3953" class="line" lang="c">   <span class="k" style="font-weight: 600;">if</span> <span class="p">(</span><span class="n" style="color: #333;">out</span><span class="p">)</span></span>

</pre>

</td>

</tr>

</table>

<div style="border-bottom-width: 1px; border-bottom-color: #ededed; border-bottom-style: solid;">

<p dir="auto">No need for this <code>if</code>, if you initialize out as NULL.</p>

</div>

<p style="color: #777777;">

<a href="https://gitlab.com/dueno">Daiki Ueno</a>

started a new

discussion on <a href="https://gitlab.com/gnutls/gnutls/-/merge_requests/1367#note_533965213">lib/x509/x509_ext.c</a>:

</p>

<table>

<tr class="line_holder new" id="">

<td class="old_line diff-line-num new" data-linenumber="3467" style="width: 35px; color: rgba(0,0,0,0.3); border-right-width: 1px; border-right-color: #c7f0d2; border-right-style: solid; padding: 0 5px;" align="right" bgcolor="#ddfbe6">

</td>

<td class="new_line diff-line-num new" data-linenumber="3970" style="width: 35px; color: rgba(0,0,0,0.3); border-right-width: 1px; border-right-color: #c7f0d2; border-right-style: solid; padding: 0 5px;" align="right" bgcolor="#ddfbe6">

3970

</td>

<td class="line_content new" style="padding-left: 0.5em; padding-right: 0.5em;" bgcolor="#ecfdf0">

<pre style="margin: 0;">+<span id="LC3970" class="line" lang="c">   <span class="n" style="color: #333;">version</span> <span class="o" style="font-weight: 600;">=</span> <span class="n" style="color: #333;">scts</span><span class="o" style="font-weight: 600;">-></span><span class="n" style="color: #333;">scts</span><span class="p">[</span><span class="n" style="color: #333;">idx</span><span class="p">].</span><span class="n" style="color: #333;">version</span><span class="p">;</span></span>

</pre>

</td>

</tr>

<tr class="line_holder new" id="">

<td class="old_line diff-line-num new" data-linenumber="3467" style="width: 35px; color: rgba(0,0,0,0.3); border-right-width: 1px; border-right-color: #c7f0d2; border-right-style: solid; padding: 0 5px;" align="right" bgcolor="#ddfbe6">

</td>

<td class="new_line diff-line-num new" data-linenumber="3971" style="width: 35px; color: rgba(0,0,0,0.3); border-right-width: 1px; border-right-color: #c7f0d2; border-right-style: solid; padding: 0 5px;" align="right" bgcolor="#ddfbe6">

3971

</td>

<td class="line_content new" style="padding-left: 0.5em; padding-right: 0.5em;" bgcolor="#ecfdf0">

<pre style="margin: 0;">+<span id="LC3971" class="line" lang="c">   <span class="k" style="font-weight: 600;">if</span> <span class="p">(</span><span class="n" style="color: #333;">version</span> <span class="o" style="font-weight: 600;">!=</span> <span class="mi" style="color: #099;">0</span> <span class="o" style="font-weight: 600;">||</span> <span class="n" style="color: #333;">version_out</span> <span class="o" style="font-weight: 600;">==</span> <span class="nb" style="color: #0086b3;">NULL</span><span class="p">)</span></span>

</pre>

</td>

</tr>

<tr class="line_holder new" id="">

<td class="old_line diff-line-num new" data-linenumber="3467" style="width: 35px; color: rgba(0,0,0,0.3); border-right-width: 1px; border-right-color: #c7f0d2; border-right-style: solid; padding: 0 5px;" align="right" bgcolor="#ddfbe6">

</td>

<td class="new_line diff-line-num new" data-linenumber="3972" style="width: 35px; color: rgba(0,0,0,0.3); border-right-width: 1px; border-right-color: #c7f0d2; border-right-style: solid; padding: 0 5px;" align="right" bgcolor="#ddfbe6">

3972

</td>

<td class="line_content new" style="padding-left: 0.5em; padding-right: 0.5em;" bgcolor="#ecfdf0">

<pre style="margin: 0;">+<span id="LC3972" class="line" lang="c">           <span class="k" style="font-weight: 600;">return</span> <span class="o" style="font-weight: 600;">-</span><span class="mi" style="color: #099;">1</span><span class="p">;</span></span>

</pre>

</td>

</tr>

</table>

<div style="border-bottom-width: 1px; border-bottom-color: #ededed; border-bottom-style: solid;">

<p dir="auto">No predefined error code?</p>

</div>

<p style="color: #777777;">

<a href="https://gitlab.com/dueno">Daiki Ueno</a>

started a new

discussion on <a href="https://gitlab.com/gnutls/gnutls/-/merge_requests/1367#note_533965214">lib/x509/x509_ext.c</a>:

</p>

<table>

<tr class="line_holder new" id="">

<td class="old_line diff-line-num new" data-linenumber="3467" style="width: 35px; color: rgba(0,0,0,0.3); border-right-width: 1px; border-right-color: #c7f0d2; border-right-style: solid; padding: 0 5px;" align="right" bgcolor="#ddfbe6">

</td>

<td class="new_line diff-line-num new" data-linenumber="3990" style="width: 35px; color: rgba(0,0,0,0.3); border-right-width: 1px; border-right-color: #c7f0d2; border-right-style: solid; padding: 0 5px;" align="right" bgcolor="#ddfbe6">

3990

</td>

<td class="line_content new" style="padding-left: 0.5em; padding-right: 0.5em;" bgcolor="#ecfdf0">

<pre style="margin: 0;">+<span id="LC3990" class="line" lang="c">   <span class="n" style="color: #333;">sct</span> <span class="o" style="font-weight: 600;">=</span> <span class="o" style="font-weight: 600;">&</span><span class="n" style="color: #333;">scts</span><span class="o" style="font-weight: 600;">-></span><span class="n" style="color: #333;">scts</span><span class="p">[</span><span class="n" style="color: #333;">idx</span><span class="p">];</span></span>

</pre>

</td>

</tr>

<tr class="line_holder new" id="">

<td class="old_line diff-line-num new" data-linenumber="3467" style="width: 35px; color: rgba(0,0,0,0.3); border-right-width: 1px; border-right-color: #c7f0d2; border-right-style: solid; padding: 0 5px;" align="right" bgcolor="#ddfbe6">

</td>

<td class="new_line diff-line-num new" data-linenumber="3991" style="width: 35px; color: rgba(0,0,0,0.3); border-right-width: 1px; border-right-color: #c7f0d2; border-right-style: solid; padding: 0 5px;" align="right" bgcolor="#ddfbe6">

3991

</td>

<td class="line_content new" style="padding-left: 0.5em; padding-right: 0.5em;" bgcolor="#ecfdf0">

<pre style="margin: 0;">+<span id="LC3991" class="line" lang="c">   <span class="k" style="font-weight: 600;">if</span> <span class="p">(</span><span class="n" style="color: #333;">sct</span><span class="o" style="font-weight: 600;">-></span><span class="n" style="color: #333;">version</span> <span class="o" style="font-weight: 600;">!=</span> <span class="mi" style="color: #099;">0</span><span class="p">)</span></span>

</pre>

</td>

</tr>

<tr class="line_holder new" id="">

<td class="old_line diff-line-num new" data-linenumber="3467" style="width: 35px; color: rgba(0,0,0,0.3); border-right-width: 1px; border-right-color: #c7f0d2; border-right-style: solid; padding: 0 5px;" align="right" bgcolor="#ddfbe6">

</td>

<td class="new_line diff-line-num new" data-linenumber="3992" style="width: 35px; color: rgba(0,0,0,0.3); border-right-width: 1px; border-right-color: #c7f0d2; border-right-style: solid; padding: 0 5px;" align="right" bgcolor="#ddfbe6">

3992

</td>

<td class="line_content new" style="padding-left: 0.5em; padding-right: 0.5em;" bgcolor="#ecfdf0">

<pre style="margin: 0;">+<span id="LC3992" class="line" lang="c">           <span class="k" style="font-weight: 600;">return</span> <span class="o" style="font-weight: 600;">-</span><span class="mi" style="color: #099;">1</span><span class="p">;</span></span>

</pre>

</td>

</tr>

</table>

<div style="border-bottom-width: 1px; border-bottom-color: #ededed; border-bottom-style: solid;">

<p dir="auto">No predefined error code?</p>

</div>

<p style="color: #777777;">

<a href="https://gitlab.com/dueno">Daiki Ueno</a>

started a new

discussion on <a href="https://gitlab.com/gnutls/gnutls/-/merge_requests/1367#note_533965215">lib/x509/x509_ext.c</a>:

</p>

<table>

<tr class="line_holder new" id="">

<td class="old_line diff-line-num new" data-linenumber="3467" style="width: 35px; color: rgba(0,0,0,0.3); border-right-width: 1px; border-right-color: #c7f0d2; border-right-style: solid; padding: 0 5px;" align="right" bgcolor="#ddfbe6">

</td>

<td class="new_line diff-line-num new" data-linenumber="3995" style="width: 35px; color: rgba(0,0,0,0.3); border-right-width: 1px; border-right-color: #c7f0d2; border-right-style: solid; padding: 0 5px;" align="right" bgcolor="#ddfbe6">

3995

</td>

<td class="line_content new" style="padding-left: 0.5em; padding-right: 0.5em;" bgcolor="#ecfdf0">

<pre style="margin: 0;">+<span id="LC3995" class="line" lang="c">                                      <span class="n" style="color: #333;">sct</span><span class="o" style="font-weight: 600;">-></span><span class="n" style="color: #333;">signature</span><span class="p">.</span><span class="n" style="color: #333;">data</span><span class="p">,</span></span>

</pre>

</td>

</tr>

<tr class="line_holder new" id="">

<td class="old_line diff-line-num new" data-linenumber="3467" style="width: 35px; color: rgba(0,0,0,0.3); border-right-width: 1px; border-right-color: #c7f0d2; border-right-style: solid; padding: 0 5px;" align="right" bgcolor="#ddfbe6">

</td>

<td class="new_line diff-line-num new" data-linenumber="3996" style="width: 35px; color: rgba(0,0,0,0.3); border-right-width: 1px; border-right-color: #c7f0d2; border-right-style: solid; padding: 0 5px;" align="right" bgcolor="#ddfbe6">

3996

</td>

<td class="line_content new" style="padding-left: 0.5em; padding-right: 0.5em;" bgcolor="#ecfdf0">

<pre style="margin: 0;">+<span id="LC3996" class="line" lang="c">                                      <span class="n" style="color: #333;">sct</span><span class="o" style="font-weight: 600;">-></span><span class="n" style="color: #333;">signature</span><span class="p">.</span><span class="n" style="color: #333;">size</span><span class="p">);</span></span>

</pre>

</td>

</tr>

<tr class="line_holder new" id="">

<td class="old_line diff-line-num new" data-linenumber="3467" style="width: 35px; color: rgba(0,0,0,0.3); border-right-width: 1px; border-right-color: #c7f0d2; border-right-style: solid; padding: 0 5px;" align="right" bgcolor="#ddfbe6">

</td>

<td class="new_line diff-line-num new" data-linenumber="3997" style="width: 35px; color: rgba(0,0,0,0.3); border-right-width: 1px; border-right-color: #c7f0d2; border-right-style: solid; padding: 0 5px;" align="right" bgcolor="#ddfbe6">

3997

</td>

<td class="line_content new" style="padding-left: 0.5em; padding-right: 0.5em;" bgcolor="#ecfdf0">

<pre style="margin: 0;">+<span id="LC3997" class="line" lang="c">   <span class="k" style="font-weight: 600;">if</span> <span class="p">(</span><span class="n" style="color: #333;">retval</span> <span class="o" style="font-weight: 600;"><</span> <span class="mi" style="color: #099;">0</span><span class="p">)</span></span>

</pre>

</td>

</tr>

</table>

<div style="border-bottom-width: 1px; border-bottom-color: #ededed; border-bottom-style: solid;">

<p dir="auto">nit: what about moving this check inside the <code>if (signature) { ... }</code> block?</p>

</div>

<p style="color: #777777;">

<a href="https://gitlab.com/dueno">Daiki Ueno</a>

started a new

discussion on <a href="https://gitlab.com/gnutls/gnutls/-/merge_requests/1367#note_533965216">lib/x509/x509_ext.c</a>:

</p>

<table>

<tr class="line_holder new" id="">

<td class="old_line diff-line-num new" data-linenumber="3467" style="width: 35px; color: rgba(0,0,0,0.3); border-right-width: 1px; border-right-color: #c7f0d2; border-right-style: solid; padding: 0 5px;" align="right" bgcolor="#ddfbe6">

</td>

<td class="new_line diff-line-num new" data-linenumber="4001" style="width: 35px; color: rgba(0,0,0,0.3); border-right-width: 1px; border-right-color: #c7f0d2; border-right-style: solid; padding: 0 5px;" align="right" bgcolor="#ddfbe6">

4001

</td>

<td class="line_content new" style="padding-left: 0.5em; padding-right: 0.5em;" bgcolor="#ecfdf0">

<pre style="margin: 0;">+<span id="LC4001" class="line" lang="c">                                      <span class="n" style="color: #333;">sct</span><span class="o" style="font-weight: 600;">-></span><span class="n" style="color: #333;">logid</span><span class="p">,</span></span>

</pre>

</td>

</tr>

<tr class="line_holder new" id="">

<td class="old_line diff-line-num new" data-linenumber="3467" style="width: 35px; color: rgba(0,0,0,0.3); border-right-width: 1px; border-right-color: #c7f0d2; border-right-style: solid; padding: 0 5px;" align="right" bgcolor="#ddfbe6">

</td>

<td class="new_line diff-line-num new" data-linenumber="4002" style="width: 35px; color: rgba(0,0,0,0.3); border-right-width: 1px; border-right-color: #c7f0d2; border-right-style: solid; padding: 0 5px;" align="right" bgcolor="#ddfbe6">

4002

</td>

<td class="line_content new" style="padding-left: 0.5em; padding-right: 0.5em;" bgcolor="#ecfdf0">

<pre style="margin: 0;">+<span id="LC4002" class="line" lang="c">                                      <span class="n" style="color: #333;">SCT_V1_LOGID_SIZE</span><span class="p">);</span></span>

</pre>

</td>

</tr>

<tr class="line_holder new" id="">

<td class="old_line diff-line-num new" data-linenumber="3467" style="width: 35px; color: rgba(0,0,0,0.3); border-right-width: 1px; border-right-color: #c7f0d2; border-right-style: solid; padding: 0 5px;" align="right" bgcolor="#ddfbe6">

</td>

<td class="new_line diff-line-num new" data-linenumber="4003" style="width: 35px; color: rgba(0,0,0,0.3); border-right-width: 1px; border-right-color: #c7f0d2; border-right-style: solid; padding: 0 5px;" align="right" bgcolor="#ddfbe6">

4003

</td>

<td class="line_content new" style="padding-left: 0.5em; padding-right: 0.5em;" bgcolor="#ecfdf0">

<pre style="margin: 0;">+<span id="LC4003" class="line" lang="c">   <span class="k" style="font-weight: 600;">if</span> <span class="p">(</span><span class="n" style="color: #333;">retval</span> <span class="o" style="font-weight: 600;"><</span> <span class="mi" style="color: #099;">0</span><span class="p">)</span> <span class="p">{</span></span>

</pre>

</td>

</tr>

</table>

<div style="border-bottom-width: 1px; border-bottom-color: #ededed; border-bottom-style: solid;">

<p dir="auto">nit: what about moving this check inside the if (logid) { ... } block?</p>

</div>

<p style="color: #777777;">

<a href="https://gitlab.com/dueno">Daiki Ueno</a>

started a new

discussion on <a href="https://gitlab.com/gnutls/gnutls/-/merge_requests/1367#note_533965217">lib/x509/x509_ext.c</a>:

</p>

<table>

<tr class="line_holder new" id="">

<td class="old_line diff-line-num new" data-linenumber="3467" style="width: 35px; color: rgba(0,0,0,0.3); border-right-width: 1px; border-right-color: #c7f0d2; border-right-style: solid; padding: 0 5px;" align="right" bgcolor="#ddfbe6">

</td>

<td class="new_line diff-line-num new" data-linenumber="4006" style="width: 35px; color: rgba(0,0,0,0.3); border-right-width: 1px; border-right-color: #c7f0d2; border-right-style: solid; padding: 0 5px;" align="right" bgcolor="#ddfbe6">

4006

</td>

<td class="line_content new" style="padding-left: 0.5em; padding-right: 0.5em;" bgcolor="#ecfdf0">

<pre style="margin: 0;">+<span id="LC4006" class="line" lang="c">   <span class="p">}</span></span>

</pre>

</td>

</tr>

<tr class="line_holder new" id="">

<td class="old_line diff-line-num new" data-linenumber="3467" style="width: 35px; color: rgba(0,0,0,0.3); border-right-width: 1px; border-right-color: #c7f0d2; border-right-style: solid; padding: 0 5px;" align="right" bgcolor="#ddfbe6">

</td>

<td class="new_line diff-line-num new" data-linenumber="4007" style="width: 35px; color: rgba(0,0,0,0.3); border-right-width: 1px; border-right-color: #c7f0d2; border-right-style: solid; padding: 0 5px;" align="right" bgcolor="#ddfbe6">

4007

</td>

<td class="line_content new" style="padding-left: 0.5em; padding-right: 0.5em;" bgcolor="#ecfdf0">

<pre style="margin: 0;">+<span id="LC4007" class="line" lang="c">   <span class="k" style="font-weight: 600;">if</span> <span class="p">(</span><span class="n" style="color: #333;">timestamp</span><span class="p">)</span></span>

</pre>

</td>

</tr>

<tr class="line_holder new" id="">

<td class="old_line diff-line-num new" data-linenumber="3467" style="width: 35px; color: rgba(0,0,0,0.3); border-right-width: 1px; border-right-color: #c7f0d2; border-right-style: solid; padding: 0 5px;" align="right" bgcolor="#ddfbe6">

</td>

<td class="new_line diff-line-num new" data-linenumber="4008" style="width: 35px; color: rgba(0,0,0,0.3); border-right-width: 1px; border-right-color: #c7f0d2; border-right-style: solid; padding: 0 5px;" align="right" bgcolor="#ddfbe6">

4008

</td>

<td class="line_content new" style="padding-left: 0.5em; padding-right: 0.5em;" bgcolor="#ecfdf0">

<pre style="margin: 0;">+<span id="LC4008" class="line" lang="c">           <span class="o" style="font-weight: 600;">*</span><span class="n" style="color: #333;">timestamp</span> <span class="o" style="font-weight: 600;">=</span> <span class="p">(</span><span class="n" style="color: #333;">sct</span><span class="o" style="font-weight: 600;">-></span><span class="n" style="color: #333;">timestamp</span> <span class="o" style="font-weight: 600;">/</span> <span class="mi" style="color: #099;">1000</span><span class="p">);</span></span>

</pre>

</td>

</tr>

</table>

<div style="border-bottom-width: 1px; border-bottom-color: #ededed; border-bottom-style: solid;">

<p dir="auto">nit: no need for parentheses in RHS.</p>

</div>

</td>

</tr>

</tbody>

</table>

</td>

</tr>

</tbody>

</table>

</div>

<div class="footer" style="margin-top: 10px;">

<p style="font-size: small; color: #666;">

—

<br>

Reply to this email directly or <a href="https://gitlab.com/gnutls/gnutls/-/merge_requests/1367">view it on GitLab</a>.

<br>

You're receiving this email because of your account on gitlab.com.

If you'd like to receive fewer emails, you can

<a href="https://gitlab.com/-/sent_notifications/d68d575e712c94960a1a146ddfde6e34/unsubscribe">unsubscribe</a>

from this thread or

adjust your notification settings.

<script type="application/ld+json">{"@context":"http://schema.org","@type":"EmailMessage","action":{"@type":"ViewAction","name":"View Merge request","url":"https://gitlab.com/gnutls/gnutls/-/merge_requests/1367"}}</script>

</p>

</div>

</body>

</html>