Clarify new InOut arg on wrapping API. Add missing null check

AlexLanzano · AlexLanzano · commit c97e7be19f85 · 2025-11-14T15:59:10.000-05:00
diff --git a/src/wh_client_keywrap.c b/src/wh_client_keywrap.c
@@ -50,7 +50,7 @@ int wh_Client_KeyWrapRequest(whClientContext*   ctx,
 
 int wh_Client_KeyWrapResponse(whClientContext*   ctx,
                               enum wc_CipherType cipherType,
-                              void* wrappedKeyOut, uint16_t* wrappedKeySz)
+                              void* wrappedKeyOut, uint16_t* wrappedKeyInOutSz)
 {
     int                                ret;
     uint16_t                           group;
@@ -59,7 +59,7 @@ int wh_Client_KeyWrapResponse(whClientContext*   ctx,
     whMessageKeystore_KeyWrapResponse* resp = NULL;
     uint8_t*                           respData;
 
-    if (ctx == NULL || wrappedKeyOut == NULL || wrappedKeySz == NULL) {
+    if (ctx == NULL || wrappedKeyOut == NULL || wrappedKeyInOutSz == NULL) {
         return WH_ERROR_BADARGS;
     }
 
@@ -85,14 +85,14 @@ int wh_Client_KeyWrapResponse(whClientContext*   ctx,
     if (resp->rc != 0) {
         return resp->rc;
     }
-    else if (resp->wrappedKeySz > *wrappedKeySz) {
+    else if (resp->wrappedKeySz > *wrappedKeyInOutSz) {
         return WH_ERROR_BUFFER_SIZE;
     }
 
     /* Copy the wrapped key from the response data into wrappedKeyOut */
     respData = (uint8_t*)(resp + 1);
     memcpy(wrappedKeyOut, respData, resp->wrappedKeySz);
-    *wrappedKeySz = resp->wrappedKeySz;
+    *wrappedKeyInOutSz = resp->wrappedKeySz;
 
     return WH_ERROR_OK;
 }
@@ -163,7 +163,7 @@ int wh_Client_KeyUnwrapAndExportRequest(whClientContext*   ctx,
 int wh_Client_KeyUnwrapAndExportResponse(whClientContext*   ctx,
                                          enum wc_CipherType cipherType,
                                          whNvmMetadata*     metadataOut,
-                                         void* keyOut, uint16_t* keySz)
+                                         void* keyOut, uint16_t* keyInOutSz)
 {
     int                                           ret;
     uint16_t                                      group;
@@ -172,7 +172,8 @@ int wh_Client_KeyUnwrapAndExportResponse(whClientContext*   ctx,
     whMessageKeystore_KeyUnwrapAndExportResponse* resp = NULL;
     uint8_t*                                      respData;
 
-    if (ctx == NULL || metadataOut == NULL || keyOut == NULL || keySz == NULL) {
+    if (ctx == NULL || metadataOut == NULL || keyOut == NULL ||
+        keyInOutSz == NULL) {
         return WH_ERROR_BADARGS;
     }
 
@@ -200,7 +201,7 @@ int wh_Client_KeyUnwrapAndExportResponse(whClientContext*   ctx,
     if (resp->rc != WH_ERROR_OK) {
         return resp->rc;
     }
-    else if (resp->keySz > *keySz) {
+    else if (resp->keySz > *keyInOutSz) {
         return WH_ERROR_BUFFER_SIZE;
     }
 
@@ -209,7 +210,7 @@ int wh_Client_KeyUnwrapAndExportResponse(whClientContext*   ctx,
     respData = (uint8_t*)(resp + 1);
     memcpy(metadataOut, respData, sizeof(*metadataOut));
     memcpy(keyOut, respData + sizeof(*metadataOut), resp->keySz);
-    *keySz = resp->keySz;
+    *keyInOutSz = resp->keySz;
 
     return WH_ERROR_OK;
 }
@@ -219,12 +220,12 @@ int wh_Client_KeyUnwrapAndExport(whClientContext*   ctx,
                                  uint16_t serverKeyId, void* wrappedKeyIn,
                                  uint16_t       wrappedKeySz,
                                  whNvmMetadata* metadataOut, void* keyOut,
-                                 uint16_t* keySz)
+                                 uint16_t* keyInOutSz)
 {
     int ret = WH_ERROR_OK;
 
     if (ctx == NULL || wrappedKeyIn == NULL || metadataOut == NULL ||
-        keyOut == NULL || keySz == NULL)
+        keyOut == NULL || keyInOutSz == NULL)
         return WH_ERROR_BADARGS;
 
     ret = wh_Client_KeyUnwrapAndExportRequest(ctx, cipherType, serverKeyId,
@@ -235,7 +236,7 @@ int wh_Client_KeyUnwrapAndExport(whClientContext*   ctx,
 
     do {
         ret = wh_Client_KeyUnwrapAndExportResponse(ctx, cipherType, metadataOut,
-                                                   keyOut, keySz);
+                                                   keyOut, keyInOutSz);
     } while (ret == WH_ERROR_NOTREADY);
 
     return ret;
@@ -426,11 +427,11 @@ int wh_Client_DataWrapResponse(whClientContext*   ctx,
 
 int wh_Client_DataWrap(whClientContext* ctx, enum wc_CipherType cipherType,
                        uint16_t serverKeyId, void* dataIn, uint32_t dataInSz,
-                       void* wrappedDataOut, uint32_t* wrappedDataOutSz)
+                       void* wrappedDataOut, uint32_t* wrappedDataInOutSz)
 {
     int ret;
     if (ctx == NULL || wrappedDataOut == NULL || dataIn == NULL ||
-        wrappedDataOutSz == NULL) {
+        wrappedDataInOutSz == NULL) {
         return WH_ERROR_BADARGS;
     }
 
@@ -442,7 +443,7 @@ int wh_Client_DataWrap(whClientContext* ctx, enum wc_CipherType cipherType,
 
     do {
         ret = wh_Client_DataWrapResponse(ctx, cipherType, wrappedDataOut,
-                                         wrappedDataOutSz);
+                                         wrappedDataInOutSz);
 
     } while (ret == WH_ERROR_NOTREADY);
 
@@ -494,7 +495,7 @@ int wh_Client_DataUnwrapResponse(whClientContext*   ctx,
     whMessageKeystore_DataUnwrapResponse* resp = NULL;
     uint8_t*                              respData;
 
-    if (ctx == NULL || dataOut == NULL) {
+    if (ctx == NULL || dataOut == NULL || dataSz == NULL) {
         return WH_ERROR_BADARGS;
     }
 
@@ -534,11 +535,11 @@ int wh_Client_DataUnwrapResponse(whClientContext*   ctx,
 int wh_Client_DataUnwrap(whClientContext* ctx, enum wc_CipherType cipherType,
                          uint16_t serverKeyId, void* wrappedDataIn,
                          uint32_t wrappedDataInSz, void* dataOut,
-                         uint32_t* dataOutSz)
+                         uint32_t* dataInOutSz)
 {
     int ret;
     if (ctx == NULL || wrappedDataIn == NULL || dataOut == NULL ||
-        dataOutSz == NULL) {
+        dataInOutSz == NULL) {
         return WH_ERROR_BADARGS;
     }
 
@@ -549,7 +550,8 @@ int wh_Client_DataUnwrap(whClientContext* ctx, enum wc_CipherType cipherType,
     }
 
     do {
-        ret = wh_Client_DataUnwrapResponse(ctx, cipherType, dataOut, dataOutSz);
+        ret =
+            wh_Client_DataUnwrapResponse(ctx, cipherType, dataOut, dataInOutSz);
 
     } while (ret == WH_ERROR_NOTREADY);
 
diff --git a/wolfhsm/wh_client.h b/wolfhsm/wh_client.h
@@ -884,15 +884,15 @@ int wh_Client_KeyExportDma(whClientContext* c, uint16_t keyId,
  * @param[in] keySz The size in bytes of the key material to wrap.
  * @param[in] metadataIn Pointer to the metadata for the wrapped key.
  * @param[out] wrappedKeyOut Pointer to store the wrapped key.
- * @param[in/out] wrappedKeySz IN: Size of wrappedKeyOut in bytes.
- *                             OUT: Size of the total wrapped key object.
- *                             OUT may be less than IN.
+ * @param[in/out] wrappedKeyInOutSz IN: Size of wrappedKeyOut in bytes.
+ *                                 OUT: Size of the total wrapped key object
+ * returned by the server. OUT may be less than IN.
  * @return int Returns 0 on success, or a negative error code on failure.
  */
 int wh_Client_KeyWrap(whClientContext* ctx, enum wc_CipherType cipherType,
                       uint16_t serverKeyId, void* keyIn, uint16_t keySz,
                       whNvmMetadata* metadataIn, void* wrappedKeyOut,
-                      uint16_t* wrappedKeySz);
+                      uint16_t* wrappedKeyInOutSz);
 
 /**
  * @brief Sends a key wrap request to the server
@@ -926,14 +926,14 @@ int wh_Client_KeyWrapRequest(whClientContext*   ctx,
  * @param[in] ctx Pointer to the client context.
  * @param[in] cipherType Cipher used to wrap the key.
  * @param[out] wrappedKeyOut Pointer to store the wrapped key.
- * @param[in/out] wrappedKeySz IN: Size of the wrappedKeyOut buffer.
- *                             OUT: Size of the wrapped key object.
- *                             OUT may be less than IN
+ * @param[in/out] wrappedKeyInOutSz IN: Size of the wrappedKeyOut buffer.
+ *                                 OUT: Size of the wrapped key object.
+ *                                 OUT may be less than IN
  * @return int Returns 0 on success, or a negative error code on failure.
  */
 int wh_Client_KeyWrapResponse(whClientContext*   ctx,
                               enum wc_CipherType cipherType,
-                              void* wrappedKeyOut, uint16_t* wrappedKeySz);
+                              void* wrappedKeyOut, uint16_t* wrappedKeyInOutSz);
 
 /**
  * @brief Requests the server to unwrap and export a wrapped key and receives
@@ -952,17 +952,17 @@ int wh_Client_KeyWrapResponse(whClientContext*   ctx,
  * @param[in] wrappedKeySz The size in bytes of the wrapped key data.
  * @param[out] metadataOut Pointer to store the unwrapped key metadata.
  * @param[out] keyOut Pointer to store the unwrapped key.
- * @param[in/out] keySz IN: Size of the keyOut buffer.
- *                      OUT: Size of the exported key.
- *                      OUT may be less than IN.
+ * @param[in/out] keyInOutSz IN: Size of the keyOut buffer.
+ *                          OUT: Size of the exported key returned by the
+ * server. OUT may be less than IN.
  * @return int Returns 0 on success, or a negative error code on failure.
  */
 int wh_Client_KeyUnwrapAndExport(whClientContext*   ctx,
                                  enum wc_CipherType cipherType,
                                  uint16_t serverKeyId, void* wrappedKeyIn,
                                  uint16_t       wrappedKeySz,
                                  whNvmMetadata* metadataOut, void* keyOut,
-                                 uint16_t* keySz);
+                                 uint16_t* keyInOutSz);
 
 /**
  * @brief Requests the server to unwrap-and-export a wrapped key
@@ -998,15 +998,15 @@ int wh_Client_KeyUnwrapAndExportRequest(whClientContext*   ctx,
  * @param[in] cipherType Cipher used when for unwrapping the key.
  * @param[out] metadataOut Pointer to store the unwrapped key metadata.
  * @param[out] keyOut Pointer to store the unwrapped key.
- * @param[in/out] keySz IN: Size of the keyOut buffer.
- *                      OUT: Size of the exported key.
- *                      OUT may be less than IN.
+ * @param[in/out] keyInOutSz IN: Size of the keyOut buffer.
+ *                          OUT: Size of the exported key returned by the
+ * server. OUT may be less than IN.
  * @return int Returns 0 on success, or a negative error code on failure.
  */
 int wh_Client_KeyUnwrapAndExportResponse(whClientContext*   ctx,
                                          enum wc_CipherType cipherType,
                                          whNvmMetadata*     metadataOut,
-                                         void* keyOut, uint16_t* keySz);
+                                         void* keyOut, uint16_t* keyInOutSz);
 
 /**
  * @brief Requests the server to unwrap and cache a wrapped key and receives the
@@ -1081,13 +1081,14 @@ int wh_Client_KeyUnwrapAndCacheResponse(whClientContext*   ctx,
  * @param[in] dataInSz The size in bytes of the plaintext data.
  * @param[out] wrappedDataOut The pointer to the buffer that stores the
  * resulting wrapped data.
- * @param[in/out] wrappedDataOutSz IN: The size in bytes of the wrapped data
- * buffer. OUT: The size of the wrapped data object. OUT may be less than IN.
+ * @param[in/out] wrappedDataInOutSz IN: The size in bytes of wrappedDataOut
+ * buffer. OUT: The size of the wrapped data object returned from the server.
+ * OUT may be less than IN.
  * @return int Returns 0 on success, or a negative error code on failure.
  */
 int wh_Client_DataWrap(whClientContext* ctx, enum wc_CipherType cipherType,
                        uint16_t serverKeyId, void* dataIn, uint32_t dataInSz,
-                       void* wrappedDataOut, uint32_t* wrappedDataOutSz);
+                       void* wrappedDataOut, uint32_t* wrappedDataInOutSz);
 
 /**
  * @brief Helper function to unwrap a wrapped data object using a specified key
@@ -1103,15 +1104,15 @@ int wh_Client_DataWrap(whClientContext* ctx, enum wc_CipherType cipherType,
  * @param[in] wrappedDataInSz The size in bytes of the wrapped data object.
  * @param[out] dataOut The pointer to the buffer that stores the
  * resulting unwrapped data.
- * @param[in/out] dataOutSz IN: The size in bytes of the unwrapped data buffer.
- *                                OUT: The size of the unwrapped data object.
- *                                OUT may be less than IN.
+ * @param[in/out] dataInOutSz IN: The size in bytes of dataOut.
+ *                           OUT: The size of the unwrapped data object return
+ * by the server. OUT may be less than IN.
  * @return int Returns 0 on success, or a negative error code on failure.
  */
 int wh_Client_DataUnwrap(whClientContext* ctx, enum wc_CipherType cipherType,
                          uint16_t serverKeyId, void* wrappedDataIn,
                          uint32_t wrappedDataInSz, void* dataOut,
-                         uint32_t* dataOutSz);
+                         uint32_t* dataInOutSz);
 
 /* Counter functions */
 int wh_Client_CounterInitRequest(whClientContext* c, whNvmId counterId,
