/src/openssl111/crypto/mem.c

Source (jump to first uncovered line)
/*
 * Copyright 1995-2018 The OpenSSL Project Authors. All Rights Reserved.
 *
 * Licensed under the OpenSSL license (the "License").  You may not use
 * this file except in compliance with the License.  You can obtain a copy
 * in the file LICENSE in the source distribution or at
 * https://www.openssl.org/source/license.html
 */

#include "e_os.h"
#include "internal/cryptlib.h"
#include "crypto/cryptlib.h"
#include <stdio.h>
#include <stdlib.h>
#include <limits.h>
#include <openssl/crypto.h>
#ifndef OPENSSL_NO_CRYPTO_MDEBUG_BACKTRACE
# include <execinfo.h>
#endif

/*
 * the following pointers may be changed as long as 'allow_customize' is set
 */
static int allow_customize = 1;

static void *(*malloc_impl)(size_t, const char *, int)
    = CRYPTO_malloc;
static void *(*realloc_impl)(void *, size_t, const char *, int)
    = CRYPTO_realloc;
static void (*free_impl)(void *, const char *, int)
    = CRYPTO_free;

#ifndef OPENSSL_NO_CRYPTO_MDEBUG
# include "internal/tsan_assist.h"

static TSAN_QUALIFIER int malloc_count;
static TSAN_QUALIFIER int realloc_count;
static TSAN_QUALIFIER int free_count;

# define INCREMENT(x) tsan_counter(&(x))

static char *md_failstring;
static long md_count;
static int md_fail_percent = 0;
static int md_tracefd = -1;
static int call_malloc_debug = 1;

static void parseit(void);
static int shouldfail(void);

# define FAILTEST() if (shouldfail()) return NULL

#else
static int call_malloc_debug = 0;

# define INCREMENT(x) /* empty */
# define FAILTEST() /* empty */
#endif

int CRYPTO_set_mem_functions(
        void *(*m)(size_t, const char *, int),
        void *(*r)(void *, size_t, const char *, int),
        void (*f)(void *, const char *, int))
{
    if (!allow_customize)
        return 0;
    if (m)
        malloc_impl = m;
    if (r)
        realloc_impl = r;
    if (f)
        free_impl = f;
    return 1;
}

int CRYPTO_set_mem_debug(int flag)
{
    if (!allow_customize)
        return 0;
    call_malloc_debug = flag;
    return 1;
}

void CRYPTO_get_mem_functions(
        void *(**m)(size_t, const char *, int),
        void *(**r)(void *, size_t, const char *, int),
        void (**f)(void *, const char *, int))
{
    if (m != NULL)
        *m = malloc_impl;
    if (r != NULL)
        *r = realloc_impl;
    if (f != NULL)
        *f = free_impl;
}

#ifndef OPENSSL_NO_CRYPTO_MDEBUG
void CRYPTO_get_alloc_counts(int *mcount, int *rcount, int *fcount)
{
    if (mcount != NULL)
        *mcount = tsan_load(&malloc_count);
    if (rcount != NULL)
        *rcount = tsan_load(&realloc_count);
    if (fcount != NULL)
        *fcount = tsan_load(&free_count);
}

/*
 * Parse a "malloc failure spec" string.  This likes like a set of fields
 * separated by semicolons.  Each field has a count and an optional failure
 * percentage.  For example:
 *          100@0;100@25;0@0
 *    or    100;100@25;0
 * This means 100 mallocs succeed, then next 100 fail 25% of the time, and
 * all remaining (count is zero) succeed.
 */
static void parseit(void)
{
    char *semi = strchr(md_failstring, ';');
    char *atsign;

    if (semi != NULL)
        *semi++ = '\0';

    /* Get the count (atol will stop at the @ if there), and percentage */
    md_count = atol(md_failstring);
    atsign = strchr(md_failstring, '@');
    md_fail_percent = atsign == NULL ? 0 : atoi(atsign + 1);

    if (semi != NULL)
        md_failstring = semi;
}

/*
 * Windows doesn't have random(), but it has rand()
 * Some rand() implementations aren't good, but we're not
 * dealing with secure randomness here.
 */
# ifdef _WIN32
#  define random() rand()
# endif
/*
 * See if the current malloc should fail.
 */
static int shouldfail(void)
{
    int roll = (int)(random() % 100);
    int shoulditfail = roll < md_fail_percent;
# ifndef _WIN32
/* suppressed on Windows as POSIX-like file descriptors are non-inheritable */
    int len;
    char buff[80];

    if (md_tracefd > 0) {
        BIO_snprintf(buff, sizeof(buff),
                     "%c C%ld %%%d R%d\n",
                     shoulditfail ? '-' : '+', md_count, md_fail_percent, roll);
        len = strlen(buff);
        if (write(md_tracefd, buff, len) != len)
            perror("shouldfail write failed");
#  ifndef OPENSSL_NO_CRYPTO_MDEBUG_BACKTRACE
        if (shoulditfail) {
            void *addrs[30];
            int num = backtrace(addrs, OSSL_NELEM(addrs));

            backtrace_symbols_fd(addrs, num, md_tracefd);
        }
#  endif
    }
# endif

    if (md_count) {
        /* If we used up this one, go to the next. */
        if (--md_count == 0)
            parseit();
    }

    return shoulditfail;
}

void ossl_malloc_setup_failures(void)
{
    const char *cp = getenv("OPENSSL_MALLOC_FAILURES");

    if (cp != NULL && (md_failstring = strdup(cp)) != NULL)
        parseit();
    if ((cp = getenv("OPENSSL_MALLOC_FD")) != NULL)
        md_tracefd = atoi(cp);
}
#endif

void *CRYPTO_malloc(size_t num, const char *file, int line)
{
    void *ret = NULL;

    INCREMENT(malloc_count);
    if (malloc_impl != NULL && malloc_impl != CRYPTO_malloc)
        return malloc_impl(num, file, line);

    if (num == 0)
        return NULL;

    FAILTEST();
    if (allow_customize) {
        /*
         * Disallow customization after the first allocation. We only set this
         * if necessary to avoid a store to the same cache line on every
         * allocation.
         */
        allow_customize = 0;
    }
#ifndef OPENSSL_NO_CRYPTO_MDEBUG
    if (call_malloc_debug) {
        CRYPTO_mem_debug_malloc(NULL, num, 0, file, line);
        ret = malloc(num);
        CRYPTO_mem_debug_malloc(ret, num, 1, file, line);
    } else {
        ret = malloc(num);
    }
#else
    (void)(file); (void)(line);
    ret = malloc(num);
#endif

    return ret;
}

void *CRYPTO_zalloc(size_t num, const char *file, int line)
{
    void *ret = CRYPTO_malloc(num, file, line);

    FAILTEST();
    if (ret != NULL)
        memset(ret, 0, num);
    return ret;
}

void *CRYPTO_realloc(void *str, size_t num, const char *file, int line)
{
    INCREMENT(realloc_count);
    if (realloc_impl != NULL && realloc_impl != &CRYPTO_realloc)
        return realloc_impl(str, num, file, line);

    FAILTEST();
    if (str == NULL)
        return CRYPTO_malloc(num, file, line);

    if (num == 0) {
        CRYPTO_free(str, file, line);
        return NULL;
    }

#ifndef OPENSSL_NO_CRYPTO_MDEBUG
    if (call_malloc_debug) {
        void *ret;
        CRYPTO_mem_debug_realloc(str, NULL, num, 0, file, line);
        ret = realloc(str, num);
        CRYPTO_mem_debug_realloc(str, ret, num, 1, file, line);
        return ret;
    }
#else
    (void)(file); (void)(line);
#endif
    return realloc(str, num);

}

void *CRYPTO_clear_realloc(void *str, size_t old_len, size_t num,
                           const char *file, int line)
{
    void *ret = NULL;

    if (str == NULL)
        return CRYPTO_malloc(num, file, line);

    if (num == 0) {
        CRYPTO_clear_free(str, old_len, file, line);
        return NULL;
    }

    /* Can't shrink the buffer since memcpy below copies |old_len| bytes. */
    if (num < old_len) {
        OPENSSL_cleanse((char*)str + num, old_len - num);
        return str;
    }

    ret = CRYPTO_malloc(num, file, line);
    if (ret != NULL) {
        memcpy(ret, str, old_len);
        CRYPTO_clear_free(str, old_len, file, line);
    }
    return ret;
}

void CRYPTO_free(void *str, const char *file, int line)
{
    INCREMENT(free_count);
    if (free_impl != NULL && free_impl != &CRYPTO_free) {
        free_impl(str, file, line);
        return;
    }

#ifndef OPENSSL_NO_CRYPTO_MDEBUG
    if (call_malloc_debug) {
        CRYPTO_mem_debug_free(str, 0, file, line);
        free(str);
        CRYPTO_mem_debug_free(str, 1, file, line);
    } else {
        free(str);
    }
#else
    free(str);
#endif
}

void CRYPTO_clear_free(void *str, size_t num, const char *file, int line)
{
    if (str == NULL)
        return;
    if (num)
        OPENSSL_cleanse(str, num);
    CRYPTO_free(str, file, line);
}

Coverage Report

Created: 2023-06-08 06:40

Line	Count	Source (jump to first uncovered line)
1		/*
2		* Copyright 1995-2018 The OpenSSL Project Authors. All Rights Reserved.
3		*
4		* Licensed under the OpenSSL license (the "License"). You may not use
5		* this file except in compliance with the License. You can obtain a copy
6		* in the file LICENSE in the source distribution or at
7		* https://www.openssl.org/source/license.html
8		*/
9
10		#include "e_os.h"
11		#include "internal/cryptlib.h"
12		#include "crypto/cryptlib.h"
13		#include <stdio.h>
14		#include <stdlib.h>
15		#include <limits.h>
16		#include <openssl/crypto.h>
17		#ifndef OPENSSL_NO_CRYPTO_MDEBUG_BACKTRACE
18		# include <execinfo.h>
19		#endif
20
21		/*
22		* the following pointers may be changed as long as 'allow_customize' is set
23		*/
24		static int allow_customize = 1;
25
26		static void (malloc_impl)(size_t, const char *, int)
27		= CRYPTO_malloc;
28		static void (realloc_impl)(void , size_t, const char , int)
29		= CRYPTO_realloc;
30		static void (free_impl)(void , const char *, int)
31		= CRYPTO_free;
32
33		#ifndef OPENSSL_NO_CRYPTO_MDEBUG
34		# include "internal/tsan_assist.h"
35
36		static TSAN_QUALIFIER int malloc_count;
37		static TSAN_QUALIFIER int realloc_count;
38		static TSAN_QUALIFIER int free_count;
39
40		# define INCREMENT(x) tsan_counter(&(x))
41
42		static char *md_failstring;
43		static long md_count;
44		static int md_fail_percent = 0;
45		static int md_tracefd = -1;
46		static int call_malloc_debug = 1;
47
48		static void parseit(void);
49		static int shouldfail(void);
50
51		# define FAILTEST() if (shouldfail()) return NULL
52
53		#else
54		static int call_malloc_debug = 0;
55
56		# define INCREMENT(x) /* empty */
57		# define FAILTEST() /* empty */
58		#endif
59
60		int CRYPTO_set_mem_functions(
61		void (m)(size_t, const char *, int),
62		void (r)(void , size_t, const char , int),
63		void (f)(void , const char *, int))
64	0	{
65	0	if (!allow_customize)
66	0	return 0;
67	0	if (m)
68	0	malloc_impl = m;
69	0	if (r)
70	0	realloc_impl = r;
71	0	if (f)
72	0	free_impl = f;
73	0	return 1;
74	0	}
75
76		int CRYPTO_set_mem_debug(int flag)
77	0	{
78	0	if (!allow_customize)
79	0	return 0;
80	0	call_malloc_debug = flag;
81	0	return 1;
82	0	}
83
84		void CRYPTO_get_mem_functions(
85		void (m)(size_t, const char , int),
86		void (r)(void , size_t, const char *, int),
87		void (*f)(void , const char *, int))
88	0	{
89	0	if (m != NULL)
90	0	*m = malloc_impl;
91	0	if (r != NULL)
92	0	*r = realloc_impl;
93	0	if (f != NULL)
94	0	*f = free_impl;
95	0	}
96
97		#ifndef OPENSSL_NO_CRYPTO_MDEBUG
98		void CRYPTO_get_alloc_counts(int mcount, int rcount, int *fcount)
99		{
100		if (mcount != NULL)
101		*mcount = tsan_load(&malloc_count);
102		if (rcount != NULL)
103		*rcount = tsan_load(&realloc_count);
104		if (fcount != NULL)
105		*fcount = tsan_load(&free_count);
106		}
107
108		/*
109		* Parse a "malloc failure spec" string. This likes like a set of fields
110		* separated by semicolons. Each field has a count and an optional failure
111		* percentage. For example:
112		* 100@0;100@25;0@0
113		* or 100;100@25;0
114		* This means 100 mallocs succeed, then next 100 fail 25% of the time, and
115		* all remaining (count is zero) succeed.
116		*/
117		static void parseit(void)
118		{
119		char *semi = strchr(md_failstring, ';');
120		char *atsign;
121
122		if (semi != NULL)
123		*semi++ = '\0';
124
125		/* Get the count (atol will stop at the @ if there), and percentage */
126		md_count = atol(md_failstring);
127		atsign = strchr(md_failstring, '@');
128		md_fail_percent = atsign == NULL ? 0 : atoi(atsign + 1);
129
130		if (semi != NULL)
131		md_failstring = semi;
132		}
133
134		/*
135		* Windows doesn't have random(), but it has rand()
136		* Some rand() implementations aren't good, but we're not
137		* dealing with secure randomness here.
138		*/
139		# ifdef _WIN32
140		# define random() rand()
141		# endif
142		/*
143		* See if the current malloc should fail.
144		*/
145		static int shouldfail(void)
146		{
147		int roll = (int)(random() % 100);
148		int shoulditfail = roll < md_fail_percent;
149		# ifndef _WIN32
150		/* suppressed on Windows as POSIX-like file descriptors are non-inheritable */
151		int len;
152		char buff[80];
153
154		if (md_tracefd > 0) {
155		BIO_snprintf(buff, sizeof(buff),
156		"%c C%ld %%%d R%d\n",
157		shoulditfail ? '-' : '+', md_count, md_fail_percent, roll);
158		len = strlen(buff);
159		if (write(md_tracefd, buff, len) != len)
160		perror("shouldfail write failed");
161		# ifndef OPENSSL_NO_CRYPTO_MDEBUG_BACKTRACE
162		if (shoulditfail) {
163		void *addrs[30];
164		int num = backtrace(addrs, OSSL_NELEM(addrs));
165
166		backtrace_symbols_fd(addrs, num, md_tracefd);
167		}
168		# endif
169		}
170		# endif
171
172		if (md_count) {
173		/* If we used up this one, go to the next. */
174		if (--md_count == 0)
175		parseit();
176		}
177
178		return shoulditfail;
179		}
180
181		void ossl_malloc_setup_failures(void)
182		{
183		const char *cp = getenv("OPENSSL_MALLOC_FAILURES");
184
185		if (cp != NULL && (md_failstring = strdup(cp)) != NULL)
186		parseit();
187		if ((cp = getenv("OPENSSL_MALLOC_FD")) != NULL)
188		md_tracefd = atoi(cp);
189		}
190		#endif
191
192		void CRYPTO_malloc(size_t num, const char file, int line)
193	148k	{
194	148k	void *ret = NULL;
195
196	148k	INCREMENT(malloc_count);
197	148k	if (malloc_impl != NULL && malloc_impl != CRYPTO_malloc)
198	0	return malloc_impl(num, file, line);
199
200	148k	if (num == 0)
201	0	return NULL;
202
203	148k	FAILTEST();
204	148k	if (allow_customize) {
205		/*
206		* Disallow customization after the first allocation. We only set this
207		* if necessary to avoid a store to the same cache line on every
208		* allocation.
209		*/
210	2	allow_customize = 0;
211	2	}
212		#ifndef OPENSSL_NO_CRYPTO_MDEBUG
213		if (call_malloc_debug) {
214		CRYPTO_mem_debug_malloc(NULL, num, 0, file, line);
215		ret = malloc(num);
216		CRYPTO_mem_debug_malloc(ret, num, 1, file, line);
217		} else {
218		ret = malloc(num);
219		}
220		#else
221	148k	(void)(file); (void)(line);
222	148k	ret = malloc(num);
223	148k	#endif
224
225	148k	return ret;
226	148k	}
227
228		void CRYPTO_zalloc(size_t num, const char file, int line)
229	135k	{
230	135k	void *ret = CRYPTO_malloc(num, file, line);
231
232	135k	FAILTEST();
233	135k	if (ret != NULL)
234	135k	memset(ret, 0, num);
235	135k	return ret;
236	135k	}
237
238		void CRYPTO_realloc(void str, size_t num, const char *file, int line)
239	14	{
240	14	INCREMENT(realloc_count);
241	14	if (realloc_impl != NULL && realloc_impl != &CRYPTO_realloc)
242	0	return realloc_impl(str, num, file, line);
243
244	14	FAILTEST();
245	14	if (str == NULL)
246	0	return CRYPTO_malloc(num, file, line);
247
248	14	if (num == 0) {
249	0	CRYPTO_free(str, file, line);
250	0	return NULL;
251	0	}
252
253		#ifndef OPENSSL_NO_CRYPTO_MDEBUG
254		if (call_malloc_debug) {
255		void *ret;
256		CRYPTO_mem_debug_realloc(str, NULL, num, 0, file, line);
257		ret = realloc(str, num);
258		CRYPTO_mem_debug_realloc(str, ret, num, 1, file, line);
259		return ret;
260		}
261		#else
262	14	(void)(file); (void)(line);
263	14	#endif
264	14	return realloc(str, num);
265
266	14	}
267
268		void CRYPTO_clear_realloc(void str, size_t old_len, size_t num,
269		const char *file, int line)
270	0	{
271	0	void *ret = NULL;
272
273	0	if (str == NULL)
274	0	return CRYPTO_malloc(num, file, line);
275
276	0	if (num == 0) {
277	0	CRYPTO_clear_free(str, old_len, file, line);
278	0	return NULL;
279	0	}
280
281		/* Can't shrink the buffer since memcpy below copies \|old_len\| bytes. */
282	0	if (num < old_len) {
283	0	OPENSSL_cleanse((char*)str + num, old_len - num);
284	0	return str;
285	0	}
286
287	0	ret = CRYPTO_malloc(num, file, line);
288	0	if (ret != NULL) {
289	0	memcpy(ret, str, old_len);
290	0	CRYPTO_clear_free(str, old_len, file, line);
291	0	}
292	0	return ret;
293	0	}
294
295		void CRYPTO_free(void str, const char file, int line)
296	153k	{
297	153k	INCREMENT(free_count);
298	153k	if (free_impl != NULL && free_impl != &CRYPTO_free) {
299	0	free_impl(str, file, line);
300	0	return;
301	0	}
302
303		#ifndef OPENSSL_NO_CRYPTO_MDEBUG
304		if (call_malloc_debug) {
305		CRYPTO_mem_debug_free(str, 0, file, line);
306		free(str);
307		CRYPTO_mem_debug_free(str, 1, file, line);
308		} else {
309		free(str);
310		}
311		#else
312	153k	free(str);
313	153k	#endif
314	153k	}
315
316		void CRYPTO_clear_free(void str, size_t num, const char file, int line)
317	97.1k	{
318	97.1k	if (str == NULL)
319	0	return;
320	97.1k	if (num)
321	97.1k	OPENSSL_cleanse(str, num);
322	97.1k	CRYPTO_free(str, file, line);
323	97.1k	}