Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Reset dhm_P and dhm_G if config call repeated; avoid memory leak #5353

Merged
merged 1 commit into from
Jan 14, 2022
Merged

Reset dhm_P and dhm_G if config call repeated; avoid memory leak #5353

merged 1 commit into from
Jan 14, 2022

Conversation

gstrauss
Copy link
Contributor

@gstrauss gstrauss commented Dec 21, 2021
edited
Loading

Description

Reset dhm_P and dhm_G if call to mbedtls_ssl_config_defaults() repeated
to avoid leaking memory.

Signed-off-by: Glenn Strauss gstrauss@gluelogic.com

Status

READY

Requires Backporting

Not required, IMHO, but could be backported. In mbedtls 3.0.0, mbedtls_ssl_config members dhm_P and dhm_G are private, so routines underlying mbedtls_ssl_config_defaults() should avoid leaking memory if mbedtls_ssl_config_defaults() is called more than once. If mbedtls_ssl_config_defaults() is called more than once by an application, then with earlier versions of mbedtls, the application could call mbedtls_mpi_free() on dhm_P and dhm_G.

Todos

Other

Test for memory leak not provided.

Observe that mbedtls_ssl_config_free() calls mbedtls_mpi_free() on dhm_P and dhm_G conf members.
Observe that mbedtls_ssl_config_defaults() calls mbedtls_ssl_conf_dh_param_bin(), and if mbedtls_ssl_config_defaults() is called more than once, then mbedtls_ssl_conf_dh_param_bin() is called more than once, and inside mbedtls_ssl_conf_dh_param_bin(), conf members dhm_P and dhm_G are overwritten. They should be freed before being overwritten. Observer in mbedtls_ssl_conf_dh_param_bin() that if there is an error, then mbedtls_mpi_free() is called on dhm_P and dhm_G conf members. This patch calls mbedtls_mpi_free() on those members before overwriting them, so that memory is not leaked if the members had previously been allocated.

@gstrauss
Reset dhm_P and dhm_G if config call repeated
cee1129 
Reset dhm_P and dhm_G if call to mbedtls_ssl_config_defaults() repeated
to avoid leaking memory.

Signed-off-by: Glenn Strauss <gstrauss@gluelogic.com>
@gstrauss gstrauss mentioned this pull request Dec 21, 2021
Closed
@minosgalanakis minosgalanakis added enhancement needs-review Every commit must be reviewed by at least two team members, needs-reviewer This PR needs someone to pick it up for review Product Backlog size-s Estimated task size: small (~2d) labels Dec 21, 2021
mpg
mpg approved these changes Jan 11, 2022
View reviewed changes
Copy link
Contributor

@mpg mpg left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM, thanks!

@mpg
Copy link
Contributor

mpg commented Jan 11, 2022

There's an inconsistency between the labels and the ChangeLog entry as to whether this is a bugfix or an enhancement. I tend to agree that this is a bug: the function's documentation doesn't say that you shouldn't call this more than once, so we should react appropriately if this happens, and at any rate, not leak memory.

Bugs need backporting to all maintained branches; currently there's only one: mbedtls-2.28. Backporting is done by creating a new PR targeting mbedtls-2.28 and linking to and from the original PR (example). @gstrauss could you create a PR for this? (If so, you can either wait for this PR to be fully approved, or optimistically create the backport with just one approval on this PR - for such a small PR I'd go with the optimistic approach, I'm mostly mention this in case you contribute larger PRs in the future.)

@mpg mpg added bug needs-backports Backports are missing or are pending review and approval. and removed enhancement labels Jan 11, 2022
@gstrauss gstrauss mentioned this pull request Jan 12, 2022
Merged
2 tasks
@gstrauss
Copy link
Contributor Author

Submitted backport to 2.28 in #5416

@mpg
Copy link
Contributor

mpg commented Jan 12, 2022

Perfect, thanks! The backport is straightforward (I mean, there were no relevant difference between the two branches that would affect the patch) so only needs one reviewer, but the main PR will need to be reviewed by a second reviewer before both PRs can be merged.

@mpg mpg self-assigned this Jan 12, 2022
AndrzejKurek
AndrzejKurek approved these changes Jan 13, 2022
View reviewed changes
Copy link
Contributor

@AndrzejKurek AndrzejKurek left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM.

@AndrzejKurek AndrzejKurek removed needs-review Every commit must be reviewed by at least two team members, needs-reviewer This PR needs someone to pick it up for review labels Jan 13, 2022
@mpg mpg added approved Design and code approved - may be waiting for CI or backports and removed needs-backports Backports are missing or are pending review and approval. labels Jan 14, 2022
@mpg mpg merged commit 73839e0 into Mbed-TLS:development Jan 14, 2022
@gstrauss gstrauss deleted the mbedtls_ssl_config_defaults-repeat branch January 24, 2022 12:31
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@AndrzejKurek AndrzejKurek AndrzejKurek approved these changes

@mpg mpg mpg approved these changes

Assignees

@mpg mpg

Labels
approved Design and code approved - may be waiting for CI or backports bug size-s Estimated task size: small (~2d)
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
4 participants
@gstrauss @mpg @AndrzejKurek @minosgalanakis