mirror of
https://github.com/yuzu-emu/mbedtls.git
synced 2025-01-13 12:35:27 +00:00
Merge pull request #5165 from mprse/aps_mem_leak_2x
(Backport 2x) ssl_client2, ssl_server2: add check for psa memory leaks
This commit is contained in:
commit
0372792415
|
@ -19,6 +19,10 @@
|
||||||
|
|
||||||
#include "ssl_test_lib.h"
|
#include "ssl_test_lib.h"
|
||||||
|
|
||||||
|
#if defined(MBEDTLS_USE_PSA_CRYPTO)
|
||||||
|
#include "test/psa_crypto_helpers.h"
|
||||||
|
#endif
|
||||||
|
|
||||||
#if defined(MBEDTLS_SSL_TEST_IMPOSSIBLE)
|
#if defined(MBEDTLS_SSL_TEST_IMPOSSIBLE)
|
||||||
int main( void )
|
int main( void )
|
||||||
{
|
{
|
||||||
|
@ -2997,6 +3001,19 @@ exit:
|
||||||
|
|
||||||
mbedtls_net_free( &server_fd );
|
mbedtls_net_free( &server_fd );
|
||||||
|
|
||||||
|
mbedtls_ssl_free( &ssl );
|
||||||
|
mbedtls_ssl_config_free( &conf );
|
||||||
|
mbedtls_ssl_session_free( &saved_session );
|
||||||
|
|
||||||
|
if( session_data != NULL )
|
||||||
|
mbedtls_platform_zeroize( session_data, session_data_len );
|
||||||
|
mbedtls_free( session_data );
|
||||||
|
#if defined(MBEDTLS_SSL_CONTEXT_SERIALIZATION)
|
||||||
|
if( context_buf != NULL )
|
||||||
|
mbedtls_platform_zeroize( context_buf, context_buf_len );
|
||||||
|
mbedtls_free( context_buf );
|
||||||
|
#endif
|
||||||
|
|
||||||
#if defined(MBEDTLS_X509_CRT_PARSE_C)
|
#if defined(MBEDTLS_X509_CRT_PARSE_C)
|
||||||
mbedtls_x509_crt_free( &clicert );
|
mbedtls_x509_crt_free( &clicert );
|
||||||
mbedtls_x509_crt_free( &cacert );
|
mbedtls_x509_crt_free( &cacert );
|
||||||
|
@ -3027,23 +3044,25 @@ exit:
|
||||||
#endif /* MBEDTLS_KEY_EXCHANGE_SOME_PSK_ENABLED &&
|
#endif /* MBEDTLS_KEY_EXCHANGE_SOME_PSK_ENABLED &&
|
||||||
MBEDTLS_USE_PSA_CRYPTO */
|
MBEDTLS_USE_PSA_CRYPTO */
|
||||||
|
|
||||||
mbedtls_ssl_session_free( &saved_session );
|
|
||||||
mbedtls_ssl_free( &ssl );
|
|
||||||
mbedtls_ssl_config_free( &conf );
|
|
||||||
rng_free( &rng );
|
|
||||||
if( session_data != NULL )
|
|
||||||
mbedtls_platform_zeroize( session_data, session_data_len );
|
|
||||||
mbedtls_free( session_data );
|
|
||||||
#if defined(MBEDTLS_SSL_CONTEXT_SERIALIZATION)
|
|
||||||
if( context_buf != NULL )
|
|
||||||
mbedtls_platform_zeroize( context_buf, context_buf_len );
|
|
||||||
mbedtls_free( context_buf );
|
|
||||||
#endif
|
|
||||||
|
|
||||||
#if defined(MBEDTLS_USE_PSA_CRYPTO)
|
#if defined(MBEDTLS_USE_PSA_CRYPTO)
|
||||||
|
const char* message = mbedtls_test_helper_is_psa_leaking();
|
||||||
|
if( message )
|
||||||
|
{
|
||||||
|
if( ret == 0 )
|
||||||
|
ret = 1;
|
||||||
|
mbedtls_printf( "PSA memory leak detected: %s\n", message);
|
||||||
|
}
|
||||||
|
#endif /* MBEDTLS_USE_PSA_CRYPTO */
|
||||||
|
|
||||||
|
/* For builds with MBEDTLS_TEST_USE_PSA_CRYPTO_RNG psa crypto
|
||||||
|
* resources are freed by rng_free(). */
|
||||||
|
#if defined(MBEDTLS_USE_PSA_CRYPTO) && \
|
||||||
|
!defined(MBEDTLS_TEST_USE_PSA_CRYPTO_RNG)
|
||||||
mbedtls_psa_crypto_free( );
|
mbedtls_psa_crypto_free( );
|
||||||
#endif
|
#endif
|
||||||
|
|
||||||
|
rng_free( &rng );
|
||||||
|
|
||||||
#if defined(MBEDTLS_TEST_HOOKS)
|
#if defined(MBEDTLS_TEST_HOOKS)
|
||||||
if( test_hooks_failure_detected( ) )
|
if( test_hooks_failure_detected( ) )
|
||||||
{
|
{
|
||||||
|
|
|
@ -63,6 +63,10 @@ int main( void )
|
||||||
#include <windows.h>
|
#include <windows.h>
|
||||||
#endif
|
#endif
|
||||||
|
|
||||||
|
#if defined(MBEDTLS_USE_PSA_CRYPTO)
|
||||||
|
#include "test/psa_crypto_helpers.h"
|
||||||
|
#endif
|
||||||
|
|
||||||
/* Size of memory to be allocated for the heap, when using the library's memory
|
/* Size of memory to be allocated for the heap, when using the library's memory
|
||||||
* management and MBEDTLS_MEMORY_BUFFER_ALLOC_C is enabled. */
|
* management and MBEDTLS_MEMORY_BUFFER_ALLOC_C is enabled. */
|
||||||
#define MEMORY_HEAP_SIZE 120000
|
#define MEMORY_HEAP_SIZE 120000
|
||||||
|
@ -3928,9 +3932,35 @@ exit:
|
||||||
mbedtls_net_free( &client_fd );
|
mbedtls_net_free( &client_fd );
|
||||||
mbedtls_net_free( &listen_fd );
|
mbedtls_net_free( &listen_fd );
|
||||||
|
|
||||||
#if defined(MBEDTLS_DHM_C) && defined(MBEDTLS_FS_IO)
|
mbedtls_ssl_free( &ssl );
|
||||||
mbedtls_dhm_free( &dhm );
|
mbedtls_ssl_config_free( &conf );
|
||||||
|
|
||||||
|
#if defined(MBEDTLS_SSL_CACHE_C)
|
||||||
|
mbedtls_ssl_cache_free( &cache );
|
||||||
#endif
|
#endif
|
||||||
|
#if defined(MBEDTLS_SSL_SESSION_TICKETS)
|
||||||
|
mbedtls_ssl_ticket_free( &ticket_ctx );
|
||||||
|
#endif
|
||||||
|
#if defined(MBEDTLS_SSL_COOKIE_C)
|
||||||
|
mbedtls_ssl_cookie_free( &cookie_ctx );
|
||||||
|
#endif
|
||||||
|
|
||||||
|
#if defined(MBEDTLS_SSL_CONTEXT_SERIALIZATION)
|
||||||
|
if( context_buf != NULL )
|
||||||
|
mbedtls_platform_zeroize( context_buf, context_buf_len );
|
||||||
|
mbedtls_free( context_buf );
|
||||||
|
#endif
|
||||||
|
|
||||||
|
#if defined(SNI_OPTION)
|
||||||
|
sni_free( sni_info );
|
||||||
|
#endif
|
||||||
|
|
||||||
|
#if defined(MBEDTLS_KEY_EXCHANGE_SOME_PSK_ENABLED)
|
||||||
|
ret = psk_free( psk_info );
|
||||||
|
if( ( ret != 0 ) && ( opt.query_config_mode == DFL_QUERY_CONFIG_MODE ) )
|
||||||
|
mbedtls_printf( "Failed to list of opaque PSKs - error was %d\n", ret );
|
||||||
|
#endif
|
||||||
|
|
||||||
#if defined(MBEDTLS_X509_CRT_PARSE_C)
|
#if defined(MBEDTLS_X509_CRT_PARSE_C)
|
||||||
mbedtls_x509_crt_free( &cacert );
|
mbedtls_x509_crt_free( &cacert );
|
||||||
mbedtls_x509_crt_free( &srvcert );
|
mbedtls_x509_crt_free( &srvcert );
|
||||||
|
@ -3938,6 +3968,11 @@ exit:
|
||||||
mbedtls_x509_crt_free( &srvcert2 );
|
mbedtls_x509_crt_free( &srvcert2 );
|
||||||
mbedtls_pk_free( &pkey2 );
|
mbedtls_pk_free( &pkey2 );
|
||||||
#endif
|
#endif
|
||||||
|
|
||||||
|
#if defined(MBEDTLS_DHM_C) && defined(MBEDTLS_FS_IO)
|
||||||
|
mbedtls_dhm_free( &dhm );
|
||||||
|
#endif
|
||||||
|
|
||||||
#if defined(MBEDTLS_SSL_ASYNC_PRIVATE)
|
#if defined(MBEDTLS_SSL_ASYNC_PRIVATE)
|
||||||
for( i = 0; (size_t) i < ssl_async_keys.slots_used; i++ )
|
for( i = 0; (size_t) i < ssl_async_keys.slots_used; i++ )
|
||||||
{
|
{
|
||||||
|
@ -3949,17 +3984,6 @@ exit:
|
||||||
}
|
}
|
||||||
}
|
}
|
||||||
#endif
|
#endif
|
||||||
#if defined(SNI_OPTION)
|
|
||||||
sni_free( sni_info );
|
|
||||||
#endif
|
|
||||||
#if defined(MBEDTLS_KEY_EXCHANGE_SOME_PSK_ENABLED)
|
|
||||||
ret = psk_free( psk_info );
|
|
||||||
if( ( ret != 0 ) && ( opt.query_config_mode == DFL_QUERY_CONFIG_MODE ) )
|
|
||||||
mbedtls_printf( "Failed to list of opaque PSKs - error was %d\n", ret );
|
|
||||||
#endif
|
|
||||||
#if defined(MBEDTLS_DHM_C) && defined(MBEDTLS_FS_IO)
|
|
||||||
mbedtls_dhm_free( &dhm );
|
|
||||||
#endif
|
|
||||||
|
|
||||||
#if defined(MBEDTLS_KEY_EXCHANGE_SOME_PSK_ENABLED) && \
|
#if defined(MBEDTLS_KEY_EXCHANGE_SOME_PSK_ENABLED) && \
|
||||||
defined(MBEDTLS_USE_PSA_CRYPTO)
|
defined(MBEDTLS_USE_PSA_CRYPTO)
|
||||||
|
@ -3980,32 +4004,27 @@ exit:
|
||||||
#endif /* MBEDTLS_KEY_EXCHANGE_SOME_PSK_ENABLED &&
|
#endif /* MBEDTLS_KEY_EXCHANGE_SOME_PSK_ENABLED &&
|
||||||
MBEDTLS_USE_PSA_CRYPTO */
|
MBEDTLS_USE_PSA_CRYPTO */
|
||||||
|
|
||||||
mbedtls_ssl_free( &ssl );
|
|
||||||
mbedtls_ssl_config_free( &conf );
|
|
||||||
rng_free( &rng );
|
|
||||||
|
|
||||||
#if defined(MBEDTLS_SSL_CACHE_C)
|
|
||||||
mbedtls_ssl_cache_free( &cache );
|
|
||||||
#endif
|
|
||||||
#if defined(MBEDTLS_SSL_SESSION_TICKETS)
|
|
||||||
mbedtls_ssl_ticket_free( &ticket_ctx );
|
|
||||||
#endif
|
|
||||||
#if defined(MBEDTLS_SSL_COOKIE_C)
|
|
||||||
mbedtls_ssl_cookie_free( &cookie_ctx );
|
|
||||||
#endif
|
|
||||||
|
|
||||||
mbedtls_free( buf );
|
|
||||||
|
|
||||||
#if defined(MBEDTLS_SSL_CONTEXT_SERIALIZATION)
|
|
||||||
if( context_buf != NULL )
|
|
||||||
mbedtls_platform_zeroize( context_buf, context_buf_len );
|
|
||||||
mbedtls_free( context_buf );
|
|
||||||
#endif
|
|
||||||
|
|
||||||
#if defined(MBEDTLS_USE_PSA_CRYPTO)
|
#if defined(MBEDTLS_USE_PSA_CRYPTO)
|
||||||
|
const char* message = mbedtls_test_helper_is_psa_leaking();
|
||||||
|
if( message )
|
||||||
|
{
|
||||||
|
if( ret == 0 )
|
||||||
|
ret = 1;
|
||||||
|
mbedtls_printf( "PSA memory leak detected: %s\n", message);
|
||||||
|
}
|
||||||
|
#endif
|
||||||
|
|
||||||
|
/* For builds with MBEDTLS_TEST_USE_PSA_CRYPTO_RNG psa crypto
|
||||||
|
* resources are freed by rng_free(). */
|
||||||
|
#if defined(MBEDTLS_USE_PSA_CRYPTO) && \
|
||||||
|
!defined(MBEDTLS_TEST_USE_PSA_CRYPTO_RNG)
|
||||||
mbedtls_psa_crypto_free( );
|
mbedtls_psa_crypto_free( );
|
||||||
#endif
|
#endif
|
||||||
|
|
||||||
|
rng_free( &rng );
|
||||||
|
|
||||||
|
mbedtls_free( buf );
|
||||||
|
|
||||||
#if defined(MBEDTLS_TEST_HOOKS)
|
#if defined(MBEDTLS_TEST_HOOKS)
|
||||||
/* Let test hooks detect errors such as resource leaks.
|
/* Let test hooks detect errors such as resource leaks.
|
||||||
* Don't do it in query_config mode, because some test code prints
|
* Don't do it in query_config mode, because some test code prints
|
||||||
|
|
|
@ -28,7 +28,6 @@
|
||||||
#include "test/psa_helpers.h"
|
#include "test/psa_helpers.h"
|
||||||
|
|
||||||
#include <psa/crypto.h>
|
#include <psa/crypto.h>
|
||||||
#include <psa_crypto_slot_management.h>
|
|
||||||
|
|
||||||
#if defined(MBEDTLS_USE_PSA_CRYPTO)
|
#if defined(MBEDTLS_USE_PSA_CRYPTO)
|
||||||
#include "mbedtls/psa_util.h"
|
#include "mbedtls/psa_util.h"
|
||||||
|
|
|
@ -22,6 +22,7 @@
|
||||||
|
|
||||||
#include <test/helpers.h>
|
#include <test/helpers.h>
|
||||||
#include <test/macros.h>
|
#include <test/macros.h>
|
||||||
|
#include <psa_crypto_slot_management.h>
|
||||||
#include <test/psa_crypto_helpers.h>
|
#include <test/psa_crypto_helpers.h>
|
||||||
|
|
||||||
#if defined(MBEDTLS_PSA_CRYPTO_C)
|
#if defined(MBEDTLS_PSA_CRYPTO_C)
|
||||||
|
|
|
@ -29,6 +29,7 @@
|
||||||
#include <psa/crypto.h>
|
#include <psa/crypto.h>
|
||||||
|
|
||||||
#include <test/asn1_helpers.h>
|
#include <test/asn1_helpers.h>
|
||||||
|
#include <psa_crypto_slot_management.h>
|
||||||
#include <test/psa_crypto_helpers.h>
|
#include <test/psa_crypto_helpers.h>
|
||||||
|
|
||||||
#if defined(MBEDTLS_PSA_CRYPTO_SE_C)
|
#if defined(MBEDTLS_PSA_CRYPTO_SE_C)
|
||||||
|
|
Loading…
Reference in a new issue