From 96c9dca216d4b84c5915e090e44e3a8238b3e8b1 Mon Sep 17 00:00:00 2001
From: Gilles Peskine <Gilles.Peskine@arm.com>
Date: Mon, 16 Mar 2026 15:16:35 +0100
Subject: [PATCH] Fix exact-size check on failure in the child

When reading data from the child, if the child reports a failure, the parent
expects the child to write an `mbedtls_test_info_t` structure, no less, no
more. To achieve this, we try reading at least one byte more, and check that
we couldn't read more than the expected size. This commit fixes two bugs:

* On success, don't require the child to fill the output buffer. This check
  was only intended for the failure case, but was accidentally put in the
  wrong place.
* On failure, we weren't checking that the child had written at least the
  expected size, which could have been worse (we'd end up with a
  child_test_info structure that's only partially initialized).

Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
---
 tests/src/fork_helpers.c | 20 ++++++++++----------
 1 file changed, 10 insertions(+), 10 deletions(-)

diff --git a/tests/src/fork_helpers.c b/tests/src/fork_helpers.c
index 4da359b74..7ede42354 100644
--- a/tests/src/fork_helpers.c
+++ b/tests/src/fork_helpers.c
@@ -117,7 +117,10 @@ int mbedtls_test_fork_run_child(
     pipe_fd[1] = -1;
 
     unsigned char result_char;
-    mbedtls_test_info_t child_test_info;
+    struct {
+        mbedtls_test_info_t child_test_info;
+        unsigned char excess;
+    } reading_on_failure;
     /* Normally, the child should give us a 1-byte result, then either
      * the child body's output or a test info. */
     ssize_t n = read(pipe_fd[0], &result_char, 1);
@@ -139,18 +142,15 @@ int mbedtls_test_fork_run_child(
     } else {
         do {
             n = read(pipe_fd[0],
-                     (unsigned char *) &child_test_info + offset,
-                     sizeof(child_test_info) - offset);
+                     (unsigned char *) &reading_on_failure + offset,
+                     sizeof(reading_on_failure) - offset);
             if (n > 0) {
                 offset += n;
             }
-        } while (n > 0 && offset < sizeof(child_test_info));
+        } while (n > 0 && offset < sizeof(reading_on_failure));
         TEST_ASSERT_ERRNO(n != -1);
-    }
-    /* Check that the child didn't write more than it should. */
-    if (n > 0) {
-        unsigned char excess;
-        TEST_EQUAL(read(pipe_fd[0], &excess, 1), 0);
+        /* Check that the child wrote the amount of data that what we expect. */
+        TEST_EQUAL(offset, sizeof(reading_on_failure.child_test_info));
     }
 
     /* Close the pipe. If we left it open, there could be a deadlock if the
@@ -166,7 +166,7 @@ int mbedtls_test_fork_run_child(
             *child_output_length = n;
             ret = 0;
         } else {
-            mbedtls_test_info_overwrite(&child_test_info);
+            mbedtls_test_info_overwrite(&reading_on_failure.child_test_info);
         }
     } else {
         /* Weird status, just report it. */