Skip to content

20241010-WOLFSSL_NO_MALLOC#8065

Merged
philljj merged 10 commits intowolfSSL:masterfrom
douzzer:20241010-WOLFSSL_NO_MALLOC
Oct 15, 2024
Merged

20241010-WOLFSSL_NO_MALLOC#8065
philljj merged 10 commits intowolfSSL:masterfrom
douzzer:20241010-WOLFSSL_NO_MALLOC

Conversation

@douzzer
Copy link
Copy Markdown
Contributor

@douzzer douzzer commented Oct 11, 2024
edited
Loading

fixes for enable-all-crypto enable-cryptonly WOLFSSL_NO_MALLOC:

revert changes from #8053

wolfcrypt/src/dh.c: add stack buffer codepath in wc_DhGenerateParams();

wolfcrypt/src/ecc.c: add always-fail codepath to find_hole() to preempt heap allocation attempts;

wolfcrypt/test/test.c: gate out several heap-dependent subtests when defined(WOLFSSL_NO_MALLOC), and add a stack buffer codepath in ed448_test();

wolfssl/wolfcrypt/types.h: harmonize macro definitions of XFREE() to use do { ... } while (0) wrappers to assure syntactic indivisibility.

tested with wolfssl-multi-test.sh ... super-quick-check with allcryptonly-no-malloc added to it.

config for allcryptonly-no-malloc:

./configure --enable-all-crypto --enable-cryptonly --disable-pkcs12 --disable-ecccustcurves --disable-brainpool --disable-dsa --disable-srp --disable-scrypt --disable-eccsi --disable-sakke --disable-pkcs7 CFLAGS='-DWOLFSSL_NO_MALLOC -DWOLFSSL_SP_NO_MALLOC -DWOLFSSL_SP_NO_DYN_STACK -DNO_WOLFSSL_MEMORY -UHAVE_ECC_KOBLITZ'

danielinux
danielinux previously requested changes Oct 11, 2024
View reviewed changes
Comment thread wolfcrypt/src/asn.c Outdated
Comment thread wolfcrypt/src/asn.c Outdated
@douzzer douzzer force-pushed the 20241010-WOLFSSL_NO_MALLOC branch from 285160f to c40a119 Compare October 11, 2024 18:57
@douzzer douzzer requested a review from danielinux October 11, 2024 19:03
JacobBarthelmeh
JacobBarthelmeh requested changes Oct 11, 2024
View reviewed changes
Comment thread wolfcrypt/src/dh.c Outdated
Comment thread wolfcrypt/src/dh.c
Comment thread wolfssl/wolfcrypt/sha.h
@JacobBarthelmeh JacobBarthelmeh removed their assignment Oct 11, 2024
@douzzer douzzer force-pushed the 20241010-WOLFSSL_NO_MALLOC branch from c40a119 to 376cd16 Compare October 12, 2024 21:34
@douzzer
Copy link
Copy Markdown
Contributor Author

douzzer commented Oct 13, 2024
edited
Loading

retest this please.

douzzer and others added 10 commits October 14, 2024 14:21
@douzzer
fixes for enable-all-crypto enable-cryptonly WOLFSSL_NO_MALLOC:
886ebb6 
wolfcrypt/src//asn.c: add stack buffer codepaths in ParseKeyUsageStr(), SetKeyIdFromPublicKey(), and EncodePolicyOID;

wolfcrypt/src/dh.c: add stack buffer codepath in wc_DhGenerateParams();

wolfcrypt/src/ecc.c: add always-fail codepath to find_hole() to preempt heap allocation attempts;

wolfcrypt/test/test.c: gate out several heap-dependent subtests when defined(WOLFSSL_NO_MALLOC), and add a stack buffer codepath in ed448_test();

wolfssl/wolfcrypt/types.h: harmonize macro definitions of XFREE() to use do { ... } while (0) wrappers to assure syntactic indivisibility.
@douzzer
Revert "Move heap variable to all sha implementations"
2ca3e11 
This reverts commit a3f6bab.
@douzzer
Revert "fix unused variables"
ee92f38 
This reverts commit 06195a2.
@douzzer
Revert "Allow compiling aes.c with WOLFSSL_NO_MALLOC"
dc2a811 
This reverts commit 56a96ba.
@douzzer
wolfcrypt/src/ed25519.c and wolfcrypt/src/hash.c: remove gating aroun…
551eb3f 
…d isAllocated XFREE()s in wc_ed25519_free() and wc_HashFree().
@douzzer
wolfcrypt/src/asn.c: revert earlier WOLFSSL_NO_MALLOC changes (not ne…
0665ff9 
…eded, after proper gating in test.c).
@douzzer
wolfssl/wolfcrypt/types.h: define USE_WOLF_STRDUP for the fallback de…
9312f3c 
…finition of XSTRDUP regardless of WOLFSSL_NO_MALLOC (wc_strdup_ex() uses XMALLOC(), which may be a user or static pool allocator).
@douzzer
more WOLFSSL_NO_MALLOC fixes:
0d5d05d 
wolfcrypt/src/dh.c: in wc_DhGenerateParams(), use named constant for buf size, and only XFREE it if !WOLFSSL_NO_MALLOC;

wolfcrypt/src/ecc.c and wolfssl/wolfcrypt/ecc.h: in wc_ecc_new_point_ex(), remove !WOLFSSL_NO_MALLOC gate around XMALLOC(), and if XMALLOC()ed, set ecc_point.isAllocated, then in wc_ecc_del_point_ex, XFREE() iff ecc_point.isAllocated;

wolfcrypt/src/pkcs7.c: in wc_PKCS7_RsaVerify(), when WOLFSSL_NO_MALLOC, jumbo-size the digest buffer to cope with in-place dynamics in RsaUnPad();

wolfcrypt/test/test.c: add !WOLFSSL_NO_MALLOC gates around various XFREE()s of objects that are on the stack in WOLFSSL_NO_MALLOC builds;

wolfssl/wolfcrypt/types.h: add an unconditional include of memory.h (itself guarded against multiple inclusion) to assure availability of WC_DEBUG_CIPHER_LIFECYCLE prototypes/macros.
@douzzer
examples/client/client.c: fix numbering annotations, and fix string l…
260a0de 
…iteral grouping for "-H".
@danielinux @douzzer
Move heap variable to all sha implementations
cc7ccf9
@douzzer douzzer force-pushed the 20241010-WOLFSSL_NO_MALLOC branch from aa1de20 to cc7ccf9 Compare October 14, 2024 19:21
@douzzer
Copy link
Copy Markdown
Contributor Author

douzzer commented Oct 14, 2024
edited
Loading

retest this please..

SparkiDev
SparkiDev requested changes Oct 14, 2024
View reviewed changes
Comment thread wolfcrypt/src/aes.c
@douzzer douzzer added the For This Release Release version 5.9.1 label Oct 15, 2024
@douzzer douzzer requested a review from philljj October 15, 2024 18:59
@philljj philljj merged commit 6cde744 into wolfSSL:master Oct 15, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@JacobBarthelmeh JacobBarthelmeh JacobBarthelmeh approved these changes

@SparkiDev SparkiDev SparkiDev approved these changes

@philljj philljj philljj approved these changes

@danielinux danielinux Awaiting requested review from danielinux

Assignees

@danielinux danielinux

@douzzer douzzer

@SparkiDev SparkiDev

@philljj philljj

Labels

For This Release Release version 5.9.1

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

5 participants

@douzzer @danielinux @JacobBarthelmeh @SparkiDev @philljj