Devid per client by bigbrett · Pull Request #406 · wolfSSL/wolfHSM

bigbrett · 2026-06-11T17:52:21Z

Overview:

This PR gives each client its own device ID, so you can run several clients in one process. You set a client's ID in its config (leave it 0 to get the default), and pass WH_CLIENT_DEVID(c) or the raw devId itself to wolfCrypt. The old shared IDs still work if you only have one client. DMA is now a simple per-client on/off switch instead of a separate device ID.

Changes:

Each client gets its own device ID, set in its config (0 means use the default). Read it back with WH_CLIENT_DEVID(c).
The old shared IDs (WH_DEV_ID, WH_DEV_ID_DMA) still work, but only with one client per process. You can now override their values at compile time.
Turn DMA on or off per client with wh_Client_SetDmaMode(). When it's on, calls that can't use DMA fall back to the normal path automatically.
Init and cleanup are safer with multiple clients: bad client IDs are rejected up front, a failed init undoes only its own work, and one client shutting down no longer affects the others.
Updated tests, benchmarks, examples, and docs to match the new devId scheme. The legacy global devIds are exercised via the wolfCrypt test suite.

wolfSSL-Fenrir-bot

Fenrir Automated Review — PR #406

Scan targets checked: none
Failed targets: wolfhsm-core-bugs, wolfhsm-crypto-bugs, wolfhsm-src

⚠️ Review incomplete — one or more scan targets failed before findings could be produced. See the Fenrir PR review detail page for logs.

wolfSSL-Fenrir-bot

Fenrir Automated Review — PR #406

Scan targets checked: none
Failed targets: wolfhsm-core-bugs, wolfhsm-crypto-bugs, wolfhsm-src

⚠️ Review incomplete — one or more scan targets failed before findings could be produced. See the Fenrir PR review detail page for logs.

Copilot

Pull request overview

Copilot reviewed 47 out of 47 changed files in this pull request and generated 3 comments.

Comments suppressed due to low confidence (2)

wolfhsm/wh_client.h:1

The docstring claims wh_Client_SetDmaMode() can return WH_ERROR_BADARGS on invalid input, but the implementation only errors on c == NULL and treats any non-zero useDma as enabled. Either (a) tighten the documentation to match current behavior (only NULL pointer is invalid), or (b) add explicit validation (e.g., only accept 0/1) so the documented error case is real.
wolfhsm/wh_keyid.h:1
This comment describes client_id as always constrained to [1, WH_CLIENT_ID_MAX] (0 reserved), but then implies the server only rejects 0 when WOLFHSM_CFG_GLOBAL_KEYS is enabled. Given wh_Client_Init() now rejects 0 unconditionally, consider aligning the server-side contract/documentation by either (a) stating explicitly that the client library enforces 0 as invalid regardless of server config, or (b) updating the server INIT handling to reject 0 in all builds so the reserved namespace is consistently enforced end-to-end.

wolfSSL-Fenrir-bot

Fenrir Automated Review — PR #406

Scan targets checked: none
Failed targets: wolfhsm-core-bugs, wolfhsm-crypto-bugs, wolfhsm-src

⚠️ Review incomplete — one or more scan targets failed before findings could be produced. See the Fenrir PR review detail page for logs.

wolfSSL-Fenrir-bot

Fenrir Automated Review — PR #406

Scan targets checked: wolfhsm-core-bugs, wolfhsm-crypto-bugs, wolfhsm-src

Findings: 1
1 finding(s) posted as inline comments (see file-level comments below)

This review was generated automatically by Fenrir. Findings are non-blocking.

process

Copilot

Pull request overview

Copilot reviewed 47 out of 47 changed files in this pull request and generated 2 comments.

wolfSSL-Fenrir-bot

Fenrir Automated Review — PR #406

Scan targets checked: wolfhsm-core-bugs, wolfhsm-crypto-bugs, wolfhsm-src

No new issues found in the changed files. ✅

Copilot AI review requested due to automatic review settings June 11, 2026 17:52

Copilot started reviewing on behalf of bigbrett June 11, 2026 17:52 View session

This comment was marked as outdated.

Sign in to view

bigbrett force-pushed the devid-per-client branch from 988d734 to 4ff72c1 Compare June 11, 2026 21:07

bigbrett requested review from Copilot and wolfSSL-Fenrir-bot June 11, 2026 21:29

wolfSSL-Fenrir-bot reviewed Jun 11, 2026

View reviewed changes

bigbrett requested a review from wolfSSL-Fenrir-bot June 11, 2026 21:32

wolfSSL-Fenrir-bot reviewed Jun 11, 2026

View reviewed changes

Copilot AI reviewed Jun 11, 2026

View reviewed changes

Comment thread src/wh_client.c Outdated

Comment thread src/wh_client.c

Comment thread src/wh_client.c

Copilot started reviewing on behalf of bigbrett June 11, 2026 22:01 View session

bigbrett requested a review from wolfSSL-Fenrir-bot June 15, 2026 15:19

wolfSSL-Fenrir-bot reviewed Jun 15, 2026

View reviewed changes

LinuxJedi requested a review from wolfSSL-Fenrir-bot June 15, 2026 16:37

wolfSSL-Fenrir-bot reviewed Jun 15, 2026

View reviewed changes

Comment thread src/wh_client.c Outdated

bigbrett force-pushed the devid-per-client branch from c902d9f to 9ffec74 Compare June 15, 2026 22:14

Add support for client-specific devIds, faciliating multiple clients per

587b834

process

bigbrett force-pushed the devid-per-client branch from 9ffec74 to 587b834 Compare June 15, 2026 22:15

bigbrett commented Jun 15, 2026

View reviewed changes

Comment thread src/wh_client.c Outdated

bigbrett requested review from Copilot and wolfSSL-Fenrir-bot June 15, 2026 22:16

Copilot started reviewing on behalf of bigbrett June 15, 2026 22:17 View session

Copilot AI reviewed Jun 15, 2026

View reviewed changes

Comment thread src/wh_client.c

Comment thread src/wh_client.c

wolfSSL-Fenrir-bot reviewed Jun 15, 2026

View reviewed changes

bigbrett assigned billphipps and AlexLanzano Jun 15, 2026

bigbrett requested review from AlexLanzano and billphipps June 15, 2026 22:56

bigbrett marked this pull request as ready for review June 15, 2026 22:56

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Devid per client#406

Devid per client#406
bigbrett wants to merge 1 commit into
wolfSSL:mainfrom
bigbrett:devid-per-client

bigbrett commented Jun 11, 2026 •

edited

Loading

Uh oh!

This comment was marked as outdated.

Uh oh!

wolfSSL-Fenrir-bot left a comment

Uh oh!

wolfSSL-Fenrir-bot left a comment

Uh oh!

Copilot AI left a comment

Uh oh!

Uh oh!

Uh oh!

Uh oh!

wolfSSL-Fenrir-bot left a comment

Uh oh!

wolfSSL-Fenrir-bot left a comment

Uh oh!

Uh oh!

Uh oh!

Copilot AI left a comment

Uh oh!

Uh oh!

Uh oh!

wolfSSL-Fenrir-bot left a comment

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

5 participants

Conversation

bigbrett commented Jun 11, 2026 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

Overview:

Changes:

Uh oh!

This comment was marked as outdated.

Uh oh!

wolfSSL-Fenrir-bot left a comment

Choose a reason for hiding this comment

Fenrir Automated Review — PR #406

Uh oh!

wolfSSL-Fenrir-bot left a comment

Choose a reason for hiding this comment

Fenrir Automated Review — PR #406

Uh oh!

Copilot AI left a comment

Choose a reason for hiding this comment

Pull request overview

Uh oh!

Uh oh!

Uh oh!

Uh oh!

wolfSSL-Fenrir-bot left a comment

Choose a reason for hiding this comment

Fenrir Automated Review — PR #406

Uh oh!

wolfSSL-Fenrir-bot left a comment

Choose a reason for hiding this comment

Fenrir Automated Review — PR #406

Uh oh!

Uh oh!

Uh oh!

Copilot AI left a comment

Choose a reason for hiding this comment

Pull request overview

Uh oh!

Uh oh!

Uh oh!

wolfSSL-Fenrir-bot left a comment

Choose a reason for hiding this comment

Fenrir Automated Review — PR #406

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

5 participants

bigbrett commented Jun 11, 2026 •

edited

Loading