From d962bb018d103736950d2c610e71327be5b39ae4 Mon Sep 17 00:00:00 2001 From: Bevan Weiss Date: Sat, 10 Oct 2020 13:48:05 +1100 Subject: [PATCH] wolfssl: Add WC_NO_HARDEN suppression to compiler defines, and remove duplicate defines in MSVC Silence the wolf from telling us: #warning "For timing resistance / side-channel attack prevention consider using harden options" Also removed duplicate defines for Visual Studio project, to remove some additional warnings there. --- 3rdparty/CMakeLists.txt | 13 +++++++------ 3rdparty/wolfssl.vcxproj | 2 +- rpcs3/Emu/CMakeLists.txt | 3 +++ rpcs3/rpcs3qt/CMakeLists.txt | 5 ++++- 4 files changed, 15 insertions(+), 8 deletions(-) diff --git a/3rdparty/CMakeLists.txt b/3rdparty/CMakeLists.txt index 3999928fcf..53117c0cd1 100644 --- a/3rdparty/CMakeLists.txt +++ b/3rdparty/CMakeLists.txt @@ -426,12 +426,13 @@ if(USE_SYSTEM_WOLFSSL) target_include_directories(wolfssl INTERFACE WolfSSL_INCLUDE_DIRS) else() SET(BUILD_TESTS NO CACHE BOOL "Build test applications") - add_definitions(-DHAVE_FFDHE_2048 -DTFM_TIMING_RESISTANT -DECC_TIMING_RESISTANT - -DWC_RSA_BLINDING -DHAVE_AESGCM -DWOLFSSL_SHA512 -DWOLFSSL_SHA384 -DNO_DSA -DHAVE_ECC -DTFM_ECC256 -DECC_SHAMIR - -DNO_RC4 -DNO_HC128 -DNO_RABBIT -DWOLFSSL_SHA224 -DWOLFSSL_SHA3 -DWOLFSSL_SHAKE256 -DHAVE_POLY1305 - -DHAVE_ONE_TIME_AUTH -DHAVE_CHACHA -DHAVE_HASHDRBG -DHAVE_TLS_EXTENSIONS -DHAVE_SNI -DHAVE_SUPPORTED_CURVES - -DHAVE_EXTENDED_MASTER -DNO_RC4 -DHAVE_ENCRYPT_THEN_MAC -DNO_PSK -DNO_MD4 - -DWC_NO_ASYNC_THREADING -DOPENSSL_EXTRA -DWOLFSSL_DES_ECB) + add_compile_definitions(HAVE_FFDHE_2048 TFM_TIMING_RESISTANT ECC_TIMING_RESISTANT + WC_RSA_BLINDING HAVE_AESGCM WOLFSSL_SHA512 WOLFSSL_SHA384 NO_DSA HAVE_ECC TFM_ECC256 ECC_SHAMIR + NO_RC4 NO_HC128 NO_RABBIT WOLFSSL_SHA224 WOLFSSL_SHA3 WOLFSSL_SHAKE256 HAVE_POLY1305 + HAVE_ONE_TIME_AUTH HAVE_CHACHA HAVE_HASHDRBG HAVE_TLS_EXTENSIONS HAVE_SNI HAVE_SUPPORTED_CURVES + HAVE_EXTENDED_MASTER NO_RC4 HAVE_ENCRYPT_THEN_MAC NO_PSK NO_MD4 + WC_NO_ASYNC_THREADING OPENSSL_EXTRA WOLFSSL_DES_ECB WC_NO_HARDEN) + set(ENABLED_HARDEN OFF CACHE BOOL "Disable Harden") add_subdirectory(wolfssl EXCLUDE_FROM_ALL) target_include_directories(wolfssl INTERFACE "wolfssl/") # This is needed for CURL diff --git a/3rdparty/wolfssl.vcxproj b/3rdparty/wolfssl.vcxproj index ef610c5446..ea6887e6d1 100644 --- a/3rdparty/wolfssl.vcxproj +++ b/3rdparty/wolfssl.vcxproj @@ -62,7 +62,7 @@ MaxSpeed true ./wolfssl;./wolfssl/IDE/WIN;%(AdditionalIncludeDirectories) - WOLFSSL_LIB;WOLFSSL_DES_ECB;HAVE_FFDHE_2048;TFM_TIMING_RESISTANT;ECC_TIMING_RESISTANT;WC_RSA_BLINDING;HAVE_AESGCM;WOLFSSL_SHA512;WOLFSSL_SHA384;NO_DSA;HAVE_ECC;TFM_ECC256;ECC_SHAMIR;NO_RC4;NO_HC128;NO_RABBIT;WOLFSSL_SHA224;WOLFSSL_SHA3;WOLFSSL_SHAKE256;HAVE_POLY1305;HAVE_ONE_TIME_AUTH;HAVE_CHACHA;HAVE_HASHDRBG;HAVE_TLS_EXTENSIONS;HAVE_SNI;HAVE_SUPPORTED_CURVES;HAVE_EXTENDED_MASTER;NO_RC4;HAVE_ENCRYPT_THEN_MAC;NO_PSK;NO_MD4;WC_NO_ASYNC_THREADING;OPENSSL_EXTRA;WOLFSSL_USER_SETTINGS;CYASSL_USER_SETTINGS;%(PreprocessorDefinitions) + WOLFSSL_LIB;WOLFSSL_DES_ECB;HAVE_FFDHE_2048;TFM_TIMING_RESISTANT;NO_DSA;TFM_ECC256;NO_RC4;NO_HC128;NO_RABBIT;WOLFSSL_SHA224;WOLFSSL_SHA3;WOLFSSL_SHAKE256;HAVE_POLY1305;HAVE_ONE_TIME_AUTH;HAVE_CHACHA;HAVE_HASHDRBG;HAVE_SNI;HAVE_ENCRYPT_THEN_MAC;NO_MD4;WC_NO_ASYNC_THREADING;WOLFSSL_USER_SETTINGS;CYASSL_USER_SETTINGS;WC_NO_HARDEN;%(PreprocessorDefinitions) true diff --git a/rpcs3/Emu/CMakeLists.txt b/rpcs3/Emu/CMakeLists.txt index a6efa3fae8..b45cd6304a 100644 --- a/rpcs3/Emu/CMakeLists.txt +++ b/rpcs3/Emu/CMakeLists.txt @@ -9,6 +9,9 @@ title.cpp ) +# prevent WolfSSL from warning about not having harden options +add_compile_definitions(WC_NO_HARDEN) + target_link_libraries(rpcs3_emu PRIVATE 3rdparty::zlib 3rdparty::yaml-cpp diff --git a/rpcs3/rpcs3qt/CMakeLists.txt b/rpcs3/rpcs3qt/CMakeLists.txt index cdca73725d..4d01dcc4f9 100644 --- a/rpcs3/rpcs3qt/CMakeLists.txt +++ b/rpcs3/rpcs3qt/CMakeLists.txt @@ -1,4 +1,7 @@ -set(SRC_FILES +# prevent WolfSSL from warning about not having harden options +add_compile_definitions(WC_NO_HARDEN) + +set(SRC_FILES about_dialog.cpp auto_pause_settings_dialog.cpp breakpoint_handler.cpp