X-Git-Url: https://git.openssl.org/gitweb/?p=openssl.git;a=blobdiff_plain;f=crypto%2Fmem.c;h=f7984fa958eb1edd6c61f6667f3f2b29753be662;hp=8b3f109ea6862f690ce54ea5e72b22f34d3d7a19;hb=86a2f966d0099d87dc2e2a05a923a26ebc182dea;hpb=65a22e8e4dd1763a195b5c4ff8ff2574a13b3240 diff --git a/crypto/mem.c b/crypto/mem.c index 8b3f109ea6..f7984fa958 100644 --- a/crypto/mem.c +++ b/crypto/mem.c @@ -70,28 +70,36 @@ static int allow_customize_debug = 1;/* exchanging memory-related functions at * problems when malloc/free pairs * don't match etc. */ -/* may be changed as long as `allow_customize' is set */ -static void *(*malloc_locked_func)(size_t) = malloc; -static void (*free_locked_func)(void *) = free; + + +/* the following pointers may be changed as long as 'allow_customize' is set */ + static void *(*malloc_func)(size_t) = malloc; +static void *default_malloc_ex(size_t num, const char *file, int line) + { return malloc_func(num); } +static void *(*malloc_ex_func)(size_t, const char *file, int line) + = default_malloc_ex; + static void *(*realloc_func)(void *, size_t)= realloc; +static void *default_realloc_ex(void *str, size_t num, + const char *file, int line) + { return realloc_func(str,num); } +static void *(*realloc_ex_func)(void *, size_t, const char *file, int line) + = default_realloc_ex; + static void (*free_func)(void *) = free; -static void *crypto_i_malloc_ex(size_t, const char *file, int line); -static void *crypto_i_realloc_ex(void *, size_t, const char *file, int line); -static void crypto_i_free_ex(void *); +static void *(*malloc_locked_func)(size_t) = malloc; +static void *default_malloc_locked_ex(size_t num, const char *file, int line) + { return malloc_locked_func(num); } static void *(*malloc_locked_ex_func)(size_t, const char *file, int line) - = crypto_i_malloc_ex; -static void (*free_locked_ex_func)(void *) - = crypto_i_free_ex; -static void *(*malloc_ex_func)(size_t, const char *file, int line) - = crypto_i_malloc_ex; -static void *(*realloc_ex_func)(void *, size_t, const char *file, int line) - = crypto_i_realloc_ex; -static void (*free_ex_func)(void *) - = crypto_i_free_ex; + = default_malloc_locked_ex; + +static void (*free_locked_func)(void *) = free; + -/* may be changed as long as `allow_customize_debug' is set */ + +/* may be changed as long as 'allow_customize_debug' is set */ /* XXX use correct function pointer types */ #ifdef CRYPTO_MDEBUG /* use default functions from mem_dbg.c */ @@ -113,18 +121,19 @@ static void (*set_debug_options_func)(long) = NULL; static long (*get_debug_options_func)(void) = NULL; #endif - int CRYPTO_set_mem_functions(void *(*m)(size_t), void *(*r)(void *, size_t), void (*f)(void *)) { + /* Dummy call just to ensure OPENSSL_init() gets linked in */ + OPENSSL_init(); if (!allow_customize) return 0; - if ((m == NULL) || (r == NULL) || (f == NULL)) + if ((m == 0) || (r == 0) || (f == 0)) return 0; - malloc_func=m; - realloc_func=r; + malloc_func=m; malloc_ex_func=default_malloc_ex; + realloc_func=r; realloc_ex_func=default_realloc_ex; free_func=f; - malloc_locked_func=m; + malloc_locked_func=m; malloc_locked_ex_func=default_malloc_locked_ex; free_locked_func=f; return 1; } @@ -136,14 +145,13 @@ int CRYPTO_set_mem_ex_functions( { if (!allow_customize) return 0; - if (m == NULL) m = crypto_i_malloc_ex; - if (r == NULL) r = crypto_i_realloc_ex; - if (f == NULL) f = crypto_i_free_ex; - malloc_ex_func=m; - realloc_ex_func=r; - free_ex_func=f; - malloc_locked_ex_func=m; - free_locked_ex_func=f; + if ((m == 0) || (r == 0) || (f == 0)) + return 0; + malloc_func=0; malloc_ex_func=m; + realloc_func=0; realloc_ex_func=r; + free_func=f; + malloc_locked_func=0; malloc_locked_ex_func=m; + free_locked_func=f; return 1; } @@ -153,7 +161,7 @@ int CRYPTO_set_locked_mem_functions(void *(*m)(size_t), void (*f)(void *)) return 0; if ((m == NULL) || (f == NULL)) return 0; - malloc_locked_func=m; + malloc_locked_func=m; malloc_locked_ex_func=default_malloc_locked_ex; free_locked_func=f; return 1; } @@ -164,10 +172,10 @@ int CRYPTO_set_locked_mem_ex_functions( { if (!allow_customize) return 0; - if (m == NULL) m = crypto_i_malloc_ex; - if (f == NULL) f = crypto_i_free_ex; - malloc_locked_ex_func=m; - free_locked_ex_func=f; + if ((m == NULL) || (f == NULL)) + return 0; + malloc_locked_func=0; malloc_locked_ex_func=m; + free_func=f; return 1; } @@ -187,11 +195,14 @@ int CRYPTO_set_mem_debug_functions(void (*m)(void *,int,const char *,int,int), return 1; } + void CRYPTO_get_mem_functions(void *(**m)(size_t), void *(**r)(void *, size_t), void (**f)(void *)) { - if (m != NULL) *m=malloc_func; - if (r != NULL) *r=realloc_func; + if (m != NULL) *m = (malloc_ex_func == default_malloc_ex) ? + malloc_func : 0; + if (r != NULL) *r = (realloc_ex_func == default_realloc_ex) ? + realloc_func : 0; if (f != NULL) *f=free_func; } @@ -200,14 +211,17 @@ void CRYPTO_get_mem_ex_functions( void *(**r)(void *, size_t,const char *,int), void (**f)(void *)) { - if (m != NULL) *m=malloc_ex_func; - if (r != NULL) *r=realloc_ex_func; - if (f != NULL) *f=free_ex_func; + if (m != NULL) *m = (malloc_ex_func != default_malloc_ex) ? + malloc_ex_func : 0; + if (r != NULL) *r = (realloc_ex_func != default_realloc_ex) ? + realloc_ex_func : 0; + if (f != NULL) *f=free_func; } void CRYPTO_get_locked_mem_functions(void *(**m)(size_t), void (**f)(void *)) { - if (m != NULL) *m=malloc_locked_func; + if (m != NULL) *m = (malloc_locked_ex_func == default_malloc_locked_ex) ? + malloc_locked_func : 0; if (f != NULL) *f=free_locked_func; } @@ -215,8 +229,9 @@ void CRYPTO_get_locked_mem_ex_functions( void *(**m)(size_t,const char *,int), void (**f)(void *)) { - if (m != NULL) *m=malloc_locked_ex_func; - if (f != NULL) *f=free_locked_ex_func; + if (m != NULL) *m = (malloc_locked_ex_func != default_malloc_locked_ex) ? + malloc_locked_ex_func : 0; + if (f != NULL) *f=free_locked_func; } void CRYPTO_get_mem_debug_functions(void (**m)(void *,int,const char *,int,int), @@ -237,6 +252,8 @@ void *CRYPTO_malloc_locked(int num, const char *file, int line) { void *ret = NULL; + if (num <= 0) return NULL; + allow_customize = 0; if (malloc_debug_func != NULL) { @@ -250,6 +267,16 @@ void *CRYPTO_malloc_locked(int num, const char *file, int line) if (malloc_debug_func != NULL) malloc_debug_func(ret, num, file, line, 1); +#ifndef OPENSSL_CPUID_OBJ + /* Create a dependency on the value of 'cleanse_ctr' so our memory + * sanitisation function can't be optimised out. NB: We only do + * this for >2Kb so the overhead doesn't bother us. */ + if(ret && (num > 2048)) + { extern unsigned char cleanse_ctr; + ((unsigned char *)ret)[0] = cleanse_ctr; + } +#endif + return ret; } @@ -260,7 +287,7 @@ void CRYPTO_free_locked(void *str) #ifdef LEVITTE_DEBUG_MEM fprintf(stderr, "LEVITTE_DEBUG_MEM: < 0x%p\n", str); #endif - free_locked_ex_func(str); + free_locked_func(str); if (free_debug_func != NULL) free_debug_func(NULL, 1); } @@ -269,6 +296,8 @@ void *CRYPTO_malloc(int num, const char *file, int line) { void *ret = NULL; + if (num <= 0) return NULL; + allow_customize = 0; if (malloc_debug_func != NULL) { @@ -282,6 +311,23 @@ void *CRYPTO_malloc(int num, const char *file, int line) if (malloc_debug_func != NULL) malloc_debug_func(ret, num, file, line, 1); +#ifndef OPENSSL_CPUID_OBJ + /* Create a dependency on the value of 'cleanse_ctr' so our memory + * sanitisation function can't be optimised out. NB: We only do + * this for >2Kb so the overhead doesn't bother us. */ + if(ret && (num > 2048)) + { extern unsigned char cleanse_ctr; + ((unsigned char *)ret)[0] = cleanse_ctr; + } +#endif + + return ret; + } +char *CRYPTO_strdup(const char *str, const char *file, int line) + { + char *ret = CRYPTO_malloc(strlen(str)+1, file, line); + + strcpy(ret, str); return ret; } @@ -289,6 +335,11 @@ void *CRYPTO_realloc(void *str, int num, const char *file, int line) { void *ret = NULL; + if (str == NULL) + return CRYPTO_malloc(num, file, line); + + if (num <= 0) return NULL; + if (realloc_debug_func != NULL) realloc_debug_func(str, NULL, num, file, line, 0); ret = realloc_ex_func(str,num,file,line); @@ -301,6 +352,40 @@ void *CRYPTO_realloc(void *str, int num, const char *file, int line) return ret; } +void *CRYPTO_realloc_clean(void *str, int old_len, int num, const char *file, + int line) + { + void *ret = NULL; + + if (str == NULL) + return CRYPTO_malloc(num, file, line); + + if (num <= 0) return NULL; + + /* We don't support shrinking the buffer. Note the memcpy that copies + * |old_len| bytes to the new buffer, below. */ + if (num < old_len) return NULL; + + if (realloc_debug_func != NULL) + realloc_debug_func(str, NULL, num, file, line, 0); + ret=malloc_ex_func(num,file,line); + if(ret) + { + memcpy(ret,str,old_len); + OPENSSL_cleanse(str,old_len); + free_func(str); + } +#ifdef LEVITTE_DEBUG_MEM + fprintf(stderr, + "LEVITTE_DEBUG_MEM: | 0x%p -> 0x%p (%d)\n", + str, ret, num); +#endif + if (realloc_debug_func != NULL) + realloc_debug_func(str, ret, num, file, line, 1); + + return ret; + } + void CRYPTO_free(void *str) { if (free_debug_func != NULL) @@ -308,7 +393,7 @@ void CRYPTO_free(void *str) #ifdef LEVITTE_DEBUG_MEM fprintf(stderr, "LEVITTE_DEBUG_MEM: < 0x%p\n", str); #endif - free_ex_func(str); + free_func(str); if (free_debug_func != NULL) free_debug_func(NULL, 1); } @@ -320,7 +405,6 @@ void *CRYPTO_remalloc(void *a, int num, const char *file, int line) return(a); } - void CRYPTO_set_mem_debug_options(long bits) { if (set_debug_options_func != NULL) @@ -333,19 +417,3 @@ long CRYPTO_get_mem_debug_options(void) return get_debug_options_func(); return 0; } - -static void *crypto_i_malloc_ex(size_t num, const char *file, int line) - { - return malloc_func(num); - } - -static void *crypto_i_realloc_ex(void *str, size_t num, - const char *file, int line) - { - return realloc_func(str,num); - } - -static void crypto_i_free_ex(void *str) - { - free_func(str); - }