提交 e7716b7a 编写于 作者: G Geoff Thorpe

More changes coming out of the bignum auditing. BN_CTX_get() should ideally

return a "zero" bignum as BN_new() does - so reset 'top'. During
BN_CTX_end(), released bignums should be consistent so enforce this in
debug builds. Also, reduce the number of wasted BN_clear_free() calls from
BN_CTX_end() (typically by 75% or so).

Submitted by: Nils Larsch
Reviewed by: Geoff Thorpe, Ulf Möller
上级 a4e3150f
...@@ -123,7 +123,8 @@ void BN_CTX_free(BN_CTX *ctx) ...@@ -123,7 +123,8 @@ void BN_CTX_free(BN_CTX *ctx)
for (i=0; i < BN_CTX_NUM; i++) { for (i=0; i < BN_CTX_NUM; i++) {
bn_check_top(&(ctx->bn[i])); bn_check_top(&(ctx->bn[i]));
BN_clear_free(&(ctx->bn[i])); if (ctx->bn[i].d)
BN_clear_free(&(ctx->bn[i]));
} }
if (ctx->flags & BN_FLG_MALLOCED) if (ctx->flags & BN_FLG_MALLOCED)
OPENSSL_free(ctx); OPENSSL_free(ctx);
...@@ -154,7 +155,8 @@ BIGNUM *BN_CTX_get(BN_CTX *ctx) ...@@ -154,7 +155,8 @@ BIGNUM *BN_CTX_get(BN_CTX *ctx)
} }
return NULL; return NULL;
} }
bn_check_top(&(ctx->bn[ctx->tos])); /* always return a 'zeroed' bignum */
ctx->bn[ctx->tos].top = 0;
return (&(ctx->bn[ctx->tos++])); return (&(ctx->bn[ctx->tos++]));
} }
...@@ -170,19 +172,11 @@ void BN_CTX_end(BN_CTX *ctx) ...@@ -170,19 +172,11 @@ void BN_CTX_end(BN_CTX *ctx)
ctx->too_many = 0; ctx->too_many = 0;
ctx->depth--; ctx->depth--;
/* It appears some "scrapbook" uses of BN_CTX result in BIGNUMs being
* left in an inconsistent state when they are released (eg. BN_div).
* These can trip us up when they get reused, so the safest fix is to
* make sure the BIGNUMs are made sane when the context usage is
* releasing them. */
if (ctx->depth < BN_CTX_NUM_POS) if (ctx->depth < BN_CTX_NUM_POS)
#if 0 #ifndef BN_DEBUG
ctx->tos = ctx->pos[ctx->depth]; ctx->tos = ctx->pos[ctx->depth];
#else #else
{
while(ctx->tos > ctx->pos[ctx->depth]) while(ctx->tos > ctx->pos[ctx->depth])
/* This ensures the BIGNUM is sane(r) for reuse. */ bn_check_top(&ctx->bn[--(ctx->tos)]);
ctx->bn[--(ctx->tos)].top = 0;
}
#endif #endif
} }
Markdown is supported
0% .
You are about to add 0 people to the discussion. Proceed with caution.
先完成此消息的编辑!
想要评论请 注册