/src/openssl/crypto/mem.c

Source (jump to first uncovered line)
/*
 * Copyright 1995-2022 The OpenSSL Project Authors. All Rights Reserved.
 *
 * Licensed under the Apache License 2.0 (the "License").  You may not use
 * this file except in compliance with the License.  You can obtain a copy
 * in the file LICENSE in the source distribution or at
 * https://www.openssl.org/source/license.html
 */

#include "internal/e_os.h"
#include "internal/cryptlib.h"
#include "crypto/cryptlib.h"
#include <stdio.h>
#include <stdlib.h>
#include <limits.h>
#include <openssl/crypto.h>

/*
 * the following pointers may be changed as long as 'allow_customize' is set
 */
static int allow_customize = 1;
static CRYPTO_malloc_fn malloc_impl = CRYPTO_malloc;
static CRYPTO_realloc_fn realloc_impl = CRYPTO_realloc;
static CRYPTO_free_fn free_impl = CRYPTO_free;

#if !defined(OPENSSL_NO_CRYPTO_MDEBUG) && !defined(FIPS_MODULE)
# include "internal/tsan_assist.h"

# ifdef TSAN_REQUIRES_LOCKING
#  define INCREMENT(x) /* empty */
#  define LOAD(x) 0
# else  /* TSAN_REQUIRES_LOCKING */
static TSAN_QUALIFIER int malloc_count;
static TSAN_QUALIFIER int realloc_count;
static TSAN_QUALIFIER int free_count;

#  define INCREMENT(x) tsan_counter(&(x))
#  define LOAD(x)      tsan_load(&x)
# endif /* TSAN_REQUIRES_LOCKING */

static char *md_failstring;
static long md_count;
static int md_fail_percent = 0;
static int md_tracefd = -1;

static void parseit(void);
static int shouldfail(void);

# define FAILTEST() if (shouldfail()) return NULL

#else

# define INCREMENT(x) /* empty */
# define FAILTEST() /* empty */
#endif

int CRYPTO_set_mem_functions(CRYPTO_malloc_fn malloc_fn,
                             CRYPTO_realloc_fn realloc_fn,
                             CRYPTO_free_fn free_fn)
{
    if (!allow_customize)
        return 0;
    if (malloc_fn != NULL)
        malloc_impl = malloc_fn;
    if (realloc_fn != NULL)
        realloc_impl = realloc_fn;
    if (free_fn != NULL)
        free_impl = free_fn;
    return 1;
}

void CRYPTO_get_mem_functions(CRYPTO_malloc_fn *malloc_fn,
                              CRYPTO_realloc_fn *realloc_fn,
                              CRYPTO_free_fn *free_fn)
{
    if (malloc_fn != NULL)
        *malloc_fn = malloc_impl;
    if (realloc_fn != NULL)
        *realloc_fn = realloc_impl;
    if (free_fn != NULL)
        *free_fn = free_impl;
}

#if !defined(OPENSSL_NO_CRYPTO_MDEBUG) && !defined(FIPS_MODULE)
void CRYPTO_get_alloc_counts(int *mcount, int *rcount, int *fcount)
{
    if (mcount != NULL)
        *mcount = LOAD(malloc_count);
    if (rcount != NULL)
        *rcount = LOAD(realloc_count);
    if (fcount != NULL)
        *fcount = LOAD(free_count);
}

/*
 * Parse a "malloc failure spec" string.  This likes like a set of fields
 * separated by semicolons.  Each field has a count and an optional failure
 * percentage.  For example:
 *          100@0;100@25;0@0
 *    or    100;100@25;0
 * This means 100 mallocs succeed, then next 100 fail 25% of the time, and
 * all remaining (count is zero) succeed.
 */
static void parseit(void)
{
    char *semi = strchr(md_failstring, ';');
    char *atsign;

    if (semi != NULL)
        *semi++ = '\0';

    /* Get the count (atol will stop at the @ if there), and percentage */
    md_count = atol(md_failstring);
    atsign = strchr(md_failstring, '@');
    md_fail_percent = atsign == NULL ? 0 : atoi(atsign + 1);

    if (semi != NULL)
        md_failstring = semi;
}

/*
 * Windows doesn't have random(), but it has rand()
 * Some rand() implementations aren't good, but we're not
 * dealing with secure randomness here.
 */
# ifdef _WIN32
#  define random() rand()
# endif
/*
 * See if the current malloc should fail.
 */
static int shouldfail(void)
{
    int roll = (int)(random() % 100);
    int shoulditfail = roll < md_fail_percent;
# ifndef _WIN32
/* suppressed on Windows as POSIX-like file descriptors are non-inheritable */
    int len;
    char buff[80];

    if (md_tracefd > 0) {
        BIO_snprintf(buff, sizeof(buff),
                     "%c C%ld %%%d R%d\n",
                     shoulditfail ? '-' : '+', md_count, md_fail_percent, roll);
        len = strlen(buff);
        if (write(md_tracefd, buff, len) != len)
            perror("shouldfail write failed");
    }
# endif

    if (md_count) {
        /* If we used up this one, go to the next. */
        if (--md_count == 0)
            parseit();
    }

    return shoulditfail;
}

void ossl_malloc_setup_failures(void)
{
    const char *cp = getenv("OPENSSL_MALLOC_FAILURES");

    if (cp != NULL && (md_failstring = strdup(cp)) != NULL)
        parseit();
    if ((cp = getenv("OPENSSL_MALLOC_FD")) != NULL)
        md_tracefd = atoi(cp);
}
#endif

void *CRYPTO_malloc(size_t num, const char *file, int line)
{
    void *ptr;

    INCREMENT(malloc_count);
    if (malloc_impl != CRYPTO_malloc) {
        ptr = malloc_impl(num, file, line);
        if (ptr != NULL || num == 0)
            return ptr;
        goto err;
    }

    if (num == 0)
        return NULL;

    FAILTEST();
    if (allow_customize) {
        /*
         * Disallow customization after the first allocation. We only set this
         * if necessary to avoid a store to the same cache line on every
         * allocation.
         */
        allow_customize = 0;
    }

    ptr = malloc(num);
    if (ptr != NULL)
        return ptr;
 err:
    /*
     * ossl_err_get_state_int() in err.c uses CRYPTO_zalloc(num, NULL, 0) for
     * ERR_STATE allocation. Prevent mem alloc error loop while reporting error.
     */
    if (file != NULL || line != 0) {
        ERR_new();
        ERR_set_debug(file, line, NULL);
        ERR_set_error(ERR_LIB_CRYPTO, ERR_R_MALLOC_FAILURE, NULL);
    }
    return NULL;
}

void *CRYPTO_zalloc(size_t num, const char *file, int line)
{
    void *ret;

    ret = CRYPTO_malloc(num, file, line);
    FAILTEST();
    if (ret != NULL)
        memset(ret, 0, num);

    return ret;
}

void *CRYPTO_realloc(void *str, size_t num, const char *file, int line)
{
    INCREMENT(realloc_count);
    if (realloc_impl != CRYPTO_realloc)
        return realloc_impl(str, num, file, line);

    FAILTEST();
    if (str == NULL)
        return CRYPTO_malloc(num, file, line);

    if (num == 0) {
        CRYPTO_free(str, file, line);
        return NULL;
    }

    return realloc(str, num);
}

void *CRYPTO_clear_realloc(void *str, size_t old_len, size_t num,
                           const char *file, int line)
{
    void *ret = NULL;

    if (str == NULL)
        return CRYPTO_malloc(num, file, line);

    if (num == 0) {
        CRYPTO_clear_free(str, old_len, file, line);
        return NULL;
    }

    /* Can't shrink the buffer since memcpy below copies |old_len| bytes. */
    if (num < old_len) {
        OPENSSL_cleanse((char*)str + num, old_len - num);
        return str;
    }

    ret = CRYPTO_malloc(num, file, line);
    if (ret != NULL) {
        memcpy(ret, str, old_len);
        CRYPTO_clear_free(str, old_len, file, line);
    }
    return ret;
}

void CRYPTO_free(void *str, const char *file, int line)
{
    INCREMENT(free_count);
    if (free_impl != CRYPTO_free) {
        free_impl(str, file, line);
        return;
    }

    free(str);
}

void CRYPTO_clear_free(void *str, size_t num, const char *file, int line)
{
    if (str == NULL)
        return;
    if (num)
        OPENSSL_cleanse(str, num);
    CRYPTO_free(str, file, line);
}

#if !defined(OPENSSL_NO_CRYPTO_MDEBUG)

# ifndef OPENSSL_NO_DEPRECATED_3_0
int CRYPTO_mem_ctrl(int mode)
{
    (void)mode;
    return -1;
}

int CRYPTO_set_mem_debug(int flag)
{
    (void)flag;
    return -1;
}

int CRYPTO_mem_debug_push(const char *info, const char *file, int line)
{
    (void)info; (void)file; (void)line;
    return 0;
}

int CRYPTO_mem_debug_pop(void)
{
    return 0;
}

void CRYPTO_mem_debug_malloc(void *addr, size_t num, int flag,
                             const char *file, int line)
{
    (void)addr; (void)num; (void)flag; (void)file; (void)line;
}

void CRYPTO_mem_debug_realloc(void *addr1, void *addr2, size_t num, int flag,
                              const char *file, int line)
{
    (void)addr1; (void)addr2; (void)num; (void)flag; (void)file; (void)line;
}

void CRYPTO_mem_debug_free(void *addr, int flag,
                           const char *file, int line)
{
    (void)addr; (void)flag; (void)file; (void)line;
}

int CRYPTO_mem_leaks(BIO *b)
{
    (void)b;
    return -1;
}

#  ifndef OPENSSL_NO_STDIO
int CRYPTO_mem_leaks_fp(FILE *fp)
{
    (void)fp;
    return -1;
}
#  endif

int CRYPTO_mem_leaks_cb(int (*cb)(const char *str, size_t len, void *u),
                        void *u)
{
    (void)cb; (void)u;
    return -1;
}

# endif

#endif

Coverage Report

Created: 2023-06-08 06:41

Line	Count	Source (jump to first uncovered line)
1		/*
2		* Copyright 1995-2022 The OpenSSL Project Authors. All Rights Reserved.
3		*
4		* Licensed under the Apache License 2.0 (the "License"). You may not use
5		* this file except in compliance with the License. You can obtain a copy
6		* in the file LICENSE in the source distribution or at
7		* https://www.openssl.org/source/license.html
8		*/
9
10		#include "internal/e_os.h"
11		#include "internal/cryptlib.h"
12		#include "crypto/cryptlib.h"
13		#include <stdio.h>
14		#include <stdlib.h>
15		#include <limits.h>
16		#include <openssl/crypto.h>
17
18		/*
19		* the following pointers may be changed as long as 'allow_customize' is set
20		*/
21		static int allow_customize = 1;
22		static CRYPTO_malloc_fn malloc_impl = CRYPTO_malloc;
23		static CRYPTO_realloc_fn realloc_impl = CRYPTO_realloc;
24		static CRYPTO_free_fn free_impl = CRYPTO_free;
25
26		#if !defined(OPENSSL_NO_CRYPTO_MDEBUG) && !defined(FIPS_MODULE)
27		# include "internal/tsan_assist.h"
28
29		# ifdef TSAN_REQUIRES_LOCKING
30		# define INCREMENT(x) /* empty */
31		# define LOAD(x) 0
32		# else /* TSAN_REQUIRES_LOCKING */
33		static TSAN_QUALIFIER int malloc_count;
34		static TSAN_QUALIFIER int realloc_count;
35		static TSAN_QUALIFIER int free_count;
36
37		# define INCREMENT(x) tsan_counter(&(x))
38		# define LOAD(x) tsan_load(&x)
39		# endif /* TSAN_REQUIRES_LOCKING */
40
41		static char *md_failstring;
42		static long md_count;
43		static int md_fail_percent = 0;
44		static int md_tracefd = -1;
45
46		static void parseit(void);
47		static int shouldfail(void);
48
49		# define FAILTEST() if (shouldfail()) return NULL
50
51		#else
52
53		# define INCREMENT(x) /* empty */
54		# define FAILTEST() /* empty */
55		#endif
56
57		int CRYPTO_set_mem_functions(CRYPTO_malloc_fn malloc_fn,
58		CRYPTO_realloc_fn realloc_fn,
59		CRYPTO_free_fn free_fn)
60	0	{
61	0	if (!allow_customize)
62	0	return 0;
63	0	if (malloc_fn != NULL)
64	0	malloc_impl = malloc_fn;
65	0	if (realloc_fn != NULL)
66	0	realloc_impl = realloc_fn;
67	0	if (free_fn != NULL)
68	0	free_impl = free_fn;
69	0	return 1;
70	0	}
71
72		void CRYPTO_get_mem_functions(CRYPTO_malloc_fn *malloc_fn,
73		CRYPTO_realloc_fn *realloc_fn,
74		CRYPTO_free_fn *free_fn)
75	0	{
76	0	if (malloc_fn != NULL)
77	0	*malloc_fn = malloc_impl;
78	0	if (realloc_fn != NULL)
79	0	*realloc_fn = realloc_impl;
80	0	if (free_fn != NULL)
81	0	*free_fn = free_impl;
82	0	}
83
84		#if !defined(OPENSSL_NO_CRYPTO_MDEBUG) && !defined(FIPS_MODULE)
85		void CRYPTO_get_alloc_counts(int mcount, int rcount, int *fcount)
86		{
87		if (mcount != NULL)
88		*mcount = LOAD(malloc_count);
89		if (rcount != NULL)
90		*rcount = LOAD(realloc_count);
91		if (fcount != NULL)
92		*fcount = LOAD(free_count);
93		}
94
95		/*
96		* Parse a "malloc failure spec" string. This likes like a set of fields
97		* separated by semicolons. Each field has a count and an optional failure
98		* percentage. For example:
99		* 100@0;100@25;0@0
100		* or 100;100@25;0
101		* This means 100 mallocs succeed, then next 100 fail 25% of the time, and
102		* all remaining (count is zero) succeed.
103		*/
104		static void parseit(void)
105		{
106		char *semi = strchr(md_failstring, ';');
107		char *atsign;
108
109		if (semi != NULL)
110		*semi++ = '\0';
111
112		/* Get the count (atol will stop at the @ if there), and percentage */
113		md_count = atol(md_failstring);
114		atsign = strchr(md_failstring, '@');
115		md_fail_percent = atsign == NULL ? 0 : atoi(atsign + 1);
116
117		if (semi != NULL)
118		md_failstring = semi;
119		}
120
121		/*
122		* Windows doesn't have random(), but it has rand()
123		* Some rand() implementations aren't good, but we're not
124		* dealing with secure randomness here.
125		*/
126		# ifdef _WIN32
127		# define random() rand()
128		# endif
129		/*
130		* See if the current malloc should fail.
131		*/
132		static int shouldfail(void)
133		{
134		int roll = (int)(random() % 100);
135		int shoulditfail = roll < md_fail_percent;
136		# ifndef _WIN32
137		/* suppressed on Windows as POSIX-like file descriptors are non-inheritable */
138		int len;
139		char buff[80];
140
141		if (md_tracefd > 0) {
142		BIO_snprintf(buff, sizeof(buff),
143		"%c C%ld %%%d R%d\n",
144		shoulditfail ? '-' : '+', md_count, md_fail_percent, roll);
145		len = strlen(buff);
146		if (write(md_tracefd, buff, len) != len)
147		perror("shouldfail write failed");
148		}
149		# endif
150
151		if (md_count) {
152		/* If we used up this one, go to the next. */
153		if (--md_count == 0)
154		parseit();
155		}
156
157		return shoulditfail;
158		}
159
160		void ossl_malloc_setup_failures(void)
161		{
162		const char *cp = getenv("OPENSSL_MALLOC_FAILURES");
163
164		if (cp != NULL && (md_failstring = strdup(cp)) != NULL)
165		parseit();
166		if ((cp = getenv("OPENSSL_MALLOC_FD")) != NULL)
167		md_tracefd = atoi(cp);
168		}
169		#endif
170
171		void CRYPTO_malloc(size_t num, const char file, int line)
172	20.0M	{
173	20.0M	void *ptr;
174
175	20.0M	INCREMENT(malloc_count);
176	20.0M	if (malloc_impl != CRYPTO_malloc) {
177	0	ptr = malloc_impl(num, file, line);
178	0	if (ptr != NULL \|\| num == 0)
179	0	return ptr;
180	0	goto err;
181	0	}
182
183	20.0M	if (num == 0)
184	1	return NULL;
185
186	20.0M	FAILTEST();
187	20.0M	if (allow_customize) {
188		/*
189		* Disallow customization after the first allocation. We only set this
190		* if necessary to avoid a store to the same cache line on every
191		* allocation.
192		*/
193	2	allow_customize = 0;
194	2	}
195
196	20.0M	ptr = malloc(num);
197	20.0M	if (ptr != NULL)
198	20.0M	return ptr;
199	0	err:
200		/*
201		* ossl_err_get_state_int() in err.c uses CRYPTO_zalloc(num, NULL, 0) for
202		* ERR_STATE allocation. Prevent mem alloc error loop while reporting error.
203		*/
204	0	if (file != NULL \|\| line != 0) {
205	0	ERR_new();
206	0	ERR_set_debug(file, line, NULL);
207	0	ERR_set_error(ERR_LIB_CRYPTO, ERR_R_MALLOC_FAILURE, NULL);
208	0	}
209	0	return NULL;
210	20.0M	}
211
212		void CRYPTO_zalloc(size_t num, const char file, int line)
213	13.9M	{
214	13.9M	void *ret;
215
216	13.9M	ret = CRYPTO_malloc(num, file, line);
217	13.9M	FAILTEST();
218	13.9M	if (ret != NULL)
219	13.9M	memset(ret, 0, num);
220
221	13.9M	return ret;
222	13.9M	}
223
224		void CRYPTO_realloc(void str, size_t num, const char *file, int line)
225	1.49M	{
226	1.49M	INCREMENT(realloc_count);
227	1.49M	if (realloc_impl != CRYPTO_realloc)
228	0	return realloc_impl(str, num, file, line);
229
230	1.49M	FAILTEST();
231	1.49M	if (str == NULL)
232	970k	return CRYPTO_malloc(num, file, line);
233
234	525k	if (num == 0) {
235	0	CRYPTO_free(str, file, line);
236	0	return NULL;
237	0	}
238
239	525k	return realloc(str, num);
240	525k	}
241
242		void CRYPTO_clear_realloc(void str, size_t old_len, size_t num,
243		const char *file, int line)
244	456k	{
245	456k	void *ret = NULL;
246
247	456k	if (str == NULL)
248	178k	return CRYPTO_malloc(num, file, line);
249
250	277k	if (num == 0) {
251	0	CRYPTO_clear_free(str, old_len, file, line);
252	0	return NULL;
253	0	}
254
255		/* Can't shrink the buffer since memcpy below copies \|old_len\| bytes. */
256	277k	if (num < old_len) {
257	0	OPENSSL_cleanse((char*)str + num, old_len - num);
258	0	return str;
259	0	}
260
261	277k	ret = CRYPTO_malloc(num, file, line);
262	277k	if (ret != NULL) {
263	277k	memcpy(ret, str, old_len);
264	277k	CRYPTO_clear_free(str, old_len, file, line);
265	277k	}
266	277k	return ret;
267	277k	}
268
269		void CRYPTO_free(void str, const char file, int line)
270	32.4M	{
271	32.4M	INCREMENT(free_count);
272	32.4M	if (free_impl != CRYPTO_free) {
273	0	free_impl(str, file, line);
274	0	return;
275	0	}
276
277	32.4M	free(str);
278	32.4M	}
279
280		void CRYPTO_clear_free(void str, size_t num, const char file, int line)
281	1.92M	{
282	1.92M	if (str == NULL)
283	121k	return;
284	1.80M	if (num)
285	1.80M	OPENSSL_cleanse(str, num);
286	1.80M	CRYPTO_free(str, file, line);
287	1.80M	}
288
289		#if !defined(OPENSSL_NO_CRYPTO_MDEBUG)
290
291		# ifndef OPENSSL_NO_DEPRECATED_3_0
292		int CRYPTO_mem_ctrl(int mode)
293		{
294		(void)mode;
295		return -1;
296		}
297
298		int CRYPTO_set_mem_debug(int flag)
299		{
300		(void)flag;
301		return -1;
302		}
303
304		int CRYPTO_mem_debug_push(const char info, const char file, int line)
305		{
306		(void)info; (void)file; (void)line;
307		return 0;
308		}
309
310		int CRYPTO_mem_debug_pop(void)
311		{
312		return 0;
313		}
314
315		void CRYPTO_mem_debug_malloc(void *addr, size_t num, int flag,
316		const char *file, int line)
317		{
318		(void)addr; (void)num; (void)flag; (void)file; (void)line;
319		}
320
321		void CRYPTO_mem_debug_realloc(void addr1, void addr2, size_t num, int flag,
322		const char *file, int line)
323		{
324		(void)addr1; (void)addr2; (void)num; (void)flag; (void)file; (void)line;
325		}
326
327		void CRYPTO_mem_debug_free(void *addr, int flag,
328		const char *file, int line)
329		{
330		(void)addr; (void)flag; (void)file; (void)line;
331		}
332
333		int CRYPTO_mem_leaks(BIO *b)
334		{
335		(void)b;
336		return -1;
337		}
338
339		# ifndef OPENSSL_NO_STDIO
340		int CRYPTO_mem_leaks_fp(FILE *fp)
341		{
342		(void)fp;
343		return -1;
344		}
345		# endif
346
347		int CRYPTO_mem_leaks_cb(int (cb)(const char str, size_t len, void *u),
348		void *u)
349		{
350		(void)cb; (void)u;
351		return -1;
352		}
353
354		# endif
355
356		#endif