ERR: Adapt ERR_raise() calls after making CRYPTO_malloc() and friends report ERR_R_MALLOC_FAILURE

[DDvO]

As requested in #14833 (comment), this is an extension of #14833 with a further commit that replaces
all ERR_raise(ERR_LIB_FOO, ERR_R_MALLOC_FAILURE) calls
by ERR_raise(ERR_LIB_FOO, ERR_R_CRYPTO_LIB).

It does this change also for SSLfatal() and RLAYERfatal() calls , ECerr(), EVPerr(), as well as for the (legacy engine) CAPIerr() and ATTICerr() calls.

On this occasion, it also adapts remnant ECerr() and EVPerr() calls in crypto/ to ERR_raise().

[levitte]

... etc etc etc. Do you see the pattern well enough?

[levitte]

Should be ERR_R_BUF_LIB, since that's the function that was called

[levitte]

Should be ERR_R_BUF_LIB, since that's the function that was called

[levitte]

Should be ERR_R_BUF_LIB, since that's the function that was called

[levitte]

Should be ERR_R_ASN1_LIB, since that's the function that was called

[levitte]

Should be ERR_R_ASN1_LIB, since that's the function that was called

[levitte]

Should be ERR_R_ASN1_LIB, since that's the function that was called

[levitte]

Should be ERR_R_EVP_LIB, since that's the function that was called

[levitte]

Should be ERR_R_EVP_LIB, since that's the function that was called

[levitte]

Should be ERR_R_BIO_LIB, since that's the function that was called

[levitte]

Should be ERR_R_BIO_LIB, since that's the function that was called

[DDvO]

... etc etc etc. Do you see the pattern well enough?

Sure, but replacing ERR_R_CRYPTO_LIB by something more precise (such as ERR_R_BIO_LIB) where applicable was not what was discussed/decided in #14833.

If we go for this extra preciseness, this will require manually checking all 1200+ changes and adapting them where needed. And the gain would be IMO minimal.

Are you sure to require this effort for little benefit?

[t8m]

Hmm, the *err() calls were supposed to be replaced with ERR_raise already. Could you perhaps do it too?

[DDvO]

Hmm, the *err() calls were supposed to be replaced with ERR_raise already. Could you perhaps do it too?

Ok, adapted remnant ECerr() and EVPerr() calls in to use ERR_raise() (in separate commit).

Looks like not much can be done in this regard on CAPIerr(), ATTICerr(), and RLAYERfatal()
and I suspect that there was a decision not to adapt them before because engines are anyway deprecated.

[levitte]

... etc etc etc. Do you see the pattern well enough?

Sure, but replacing ERR_R_CRYPTO_LIB by something more precise (such as ERR_R_BIO_LIB) where applicable was not what was discussed/decided in #14833.

Apparently, I wasn't clear enough there, but that was exactly a point I tried to raise. Fact is, it was mentioned already a few times that ERR_R_MALLOC_FAILURE was wrong to begin with in those instances, 'cause the reason we got NULL in those spots could be for some other reason. They should already have been ERR_R_{whatever}_LIB.

If we go for this extra preciseness, this will require manually checking all 1200+ changes and adapting them where needed. And the gain would be IMO minimal.

I'm well aware that this is a big job. This is a reason I continually disagreed with certain statements back in #14833.

[levitte]

Hmm, the *err() calls were supposed to be replaced with ERR_raise already. Could you perhaps do it too?

Ok, adapted remnant ECerr() and EVPerr() calls in to use ERR_raise() (in separate commit).

Good. Apparently, we missed some spots when converting *err() calls to ERR_raise...

Looks like not much can be done in this regard on CAPIerr(), ATTICerr(), and RLAYERfatal() and I suspect that there was a decision not to adapt them before because engines are anyway deprecated.

There were more reasons than that, it turned out to be technically difficult. I don't remember all the details, unfortunately.

[t8m]

SSLfatal and RLAYERfatal and the err calls in engines of course need to be kept.

[DDvO]

SSLfatal and RLAYERfatal and the err calls in engines of course need to be kept.

Fine.
What could be done in engine/ is to replace the remaining (and meanwhile ignored) *_F_* constants in such calls by 0, if this felt worth the effort.

[t8m]

SSLfatal and RLAYERfatal and the err calls in engines of course need to be kept.

Fine. What could be done in engine/ is to replace the remaining (and meanwhile ignored) *_F_* constants in such calls by 0, if this felt worth the effort.

IMO not worth it.

[DDvO]

... etc etc etc. Do you see the pattern well enough?

Sure, but replacing ERR_R_CRYPTO_LIB by something more precise (such as ERR_R_BIO_LIB) where applicable was not what was discussed/decided in #14833.

Apparently, I wasn't clear enough there, but that was exactly a point I tried to raise. Fact is, it was mentioned already a few times that ERR_R_MALLOC_FAILURE was wrong to begin with in those instances, 'cause the reason we got NULL in those spots could be for some other reason. They should already have been ERR_R_{whatever}_LIB.

I'm aware of that, and so I consider getting rid of the potentially pretty misleading ERR_R_MALLOC_FAILURE a definite gain, and this benefit was easy to achieve.
Yet the potentially extra preciseness replacing ERR_R_CRYPTO_LIB with something more specific where applicable is a different story - it takes a lot of effort for little further benefit.

In particular, I feel ERR_R_CRYPTO_LIB not misleading, since ASN1, BIO, and other subsystems are all part of libcrypto, and many people likely will interpret l ERR_R_CRYPTO_LIB to refer to any part of the crypto library.

If we go for this extra preciseness, this will require manually checking all 1200+ changes and adapting them where needed. And the gain would be IMO minimal.

I'm well aware that this is a big job. This is a reason I continually disagreed with certain statements back in #14833.

If the change you requested is still of sufficient value to you, I suggest getting an OTC decision (in particular regarding the reviewing effort) and then executing the change yourself in a follow-up PR.

[DDvO]

Rebased this PR on the meanwhile merge parent PR #14833.

[DDvO]

@levitte, a few more thoughts on the partial inaccuracy of simply using ERR_R_CRYPTO_LIB for the ERR_raise() calls adapted here:

• The main virtue of this change is that the partly misleading ERR_R_MALLOC_FAILURE are gone.
• Another pro of keeping (as you wanted) all the ERR_raise() calls is that existing tracing of the caller is maintained (though the con is that they are somewhat redundant and occupy a further entry in the error queue).
• Even though in various cases for example ERR_R_BIO_LIB may be a little more to the point,
  for debugging all information needed is present in the error report, namely the exact source location in the calling function. Everything else (including the calls made before, which most likely will involve some memory allocation) may be derived from that - and essentially without extra effort, since having a look at the code context in the respective source file will be needed anyway.

[paulidale]

Raised errors following a memory allocation call should just be removed IMO. The memory allocation call will report file and line number. Subsequently reporting that it was LIB_ASN1 isn't helpful. It's obviously ASN1 from the file name.

In this instance, we'd get an error on lines 162 and 164. Polluting the error stack.

[DDvO]

Yeah, for the cases where there is an OPENSSL_*alloc() call immediately before the ERR_raise(ERR_LIB_FOO, ERR_R_CRYPTO_LIB) call with just the NULL check in between, I agree it will be better to drop the ERR_raise() call.

Though in the rather rare event of an malloc error it would not hurt to have the essentially duplicate error report (in particular since the size of the error queue should not be an issue here),
it would look a little weird and the about 400 now superfluous ERR_raise() calls just clog the source code and increase the binary footprint.

[paulidale]

This error is potentially useful. It will tell us where the failing BUF_MEM function was called from.

[openssl-machine]

This PR is in a state where it requires action by @openssl/otc but the last update was 30 days ago

[levitte]

In particular, I feel ERR_R_CRYPTO_LIB not misleading, since ASN1, BIO, and other subsystems are all part of libcrypto, and many people likely will interpret l ERR_R_CRYPTO_LIB to refer to any part of the crypto library.

... while in reality, it is a utility "sub-system", all declared in <openssl/crypto.h>

If you think about it, though, the extended line of thinking from where you're going with this is that we can essentially forego almost all sub-system indicators (what the ERR sub-system calls "lib"), and all that will remain for things in libcrypto is ERR_LIB_CRYPTO / ERR_R_CRYPTO_LIB. This also means that we can forego all sub-system specific reason codes, and collect them all in one big table (most probably doing some unification while at it), all called ERR_R_something.

However, that's not at all how it all works now, and I definitely do not believe that it's a good thing to do some kind of incremental (almost sneaky) shift toward that.
Mind you, I don't disagree with such an end goal, quite the contrary! However, if we're going to change the ERR system at that fundamental level, then it should be made with an effort dedicated to that.

If the change you requested is still of sufficient value to you, I suggest getting an OTC decision (in particular regarding the reviewing effort) and then executing the change yourself in a follow-up PR.

I'm actually working out that PR now.

[DDvO]

Rebased to fix merge conflict

[levitte]

I'm actually working out that PR now.

See #19301

[DDvO]

Closing in favor or #19301 and #19302.