wolfSSL/wolfssl
1
0
Fork 1
mirror of https://github.com/wolfSSL/wolfssl.git synced 2025-08-01 11:44:38 +02:00
Code Issues Packages Projects Releases Wiki Activity

ecc.c: fix mp_init_multi() vs mp_clear() dynamics in wc_ecc_verify_hash_ex() and mp_sqrtmod_prime().

Browse Source
This commit is contained in:
Daniel Pouzzner
2020-12-07 13:41:21 -06:00
parent ec96e5ad74
commit bfff28ab28
1 changed files with 41 additions and 28 deletions
Download Patch File Download Diff File Expand all files Collapse all files

33
wolfcrypt/src/ecc.c
View File

@@ -6571,9 +6571,10 @@ int wc_ecc_verify_hash_ex(mp_int *r, mp_int *s, const byte* hash,
if (err == MP_OKAY) { if (err == MP_OKAY) {
if ((err = mp_init_multi(v, w, u1, u2, NULL, NULL)) != MP_OKAY) { if ((err = mp_init_multi(v, w, u1, u2, NULL, NULL)) != MP_OKAY) {
err = MEMORY_E; err = MEMORY_E;
} } else {
did_init = 1; did_init = 1;
} }
}
/* allocate points */ /* allocate points */
if (err == MP_OKAY) { if (err == MP_OKAY) {
@@ -10801,7 +10802,17 @@ int mp_sqrtmod_prime(mp_int* n, mp_int* prime, mp_int* ret)
mp_int *T = (mp_int *)XMALLOC(sizeof(mp_int), NULL, DYNAMIC_TYPE_ECC_BUFFER); mp_int *T = (mp_int *)XMALLOC(sizeof(mp_int), NULL, DYNAMIC_TYPE_ECC_BUFFER);
mp_int *R = (mp_int *)XMALLOC(sizeof(mp_int), NULL, DYNAMIC_TYPE_ECC_BUFFER); mp_int *R = (mp_int *)XMALLOC(sizeof(mp_int), NULL, DYNAMIC_TYPE_ECC_BUFFER);
mp_int *two = (mp_int *)XMALLOC(sizeof(mp_int), NULL, DYNAMIC_TYPE_ECC_BUFFER); mp_int *two = (mp_int *)XMALLOC(sizeof(mp_int), NULL, DYNAMIC_TYPE_ECC_BUFFER);
#else
mp_int t1[1], C[1], Q[1], S[1], Z[1], M[1], T[1], R[1], two[1];
#endif
if ((mp_init_multi(t1, C, Q, S, Z, M) != MP_OKAY) ||
(mp_init_multi(T, R, two, NULL, NULL, NULL) != MP_OKAY)) {
res = MP_INIT_E;
goto out;
}
#ifdef WOLFSSL_SMALL_STACK
if ((t1 == NULL) || if ((t1 == NULL) ||
(C == NULL) || (C == NULL) ||
(Q == NULL) || (Q == NULL) ||
@@ -10814,8 +10825,6 @@ int mp_sqrtmod_prime(mp_int* n, mp_int* prime, mp_int* ret)
res = MP_MEM; res = MP_MEM;
goto out; goto out;
} }
#else
mp_int t1[1], C[1], Q[1], S[1], Z[1], M[1], T[1], R[1], two[1];
#endif #endif
/* first handle the simple cases n = 0 or n = 1 */ /* first handle the simple cases n = 0 or n = 1 */
@@ -10844,13 +10853,6 @@ int mp_sqrtmod_prime(mp_int* n, mp_int* prime, mp_int* ret)
goto out; goto out;
} }
if ((res = mp_init_multi(t1, C, Q, S, Z, M)) != MP_OKAY)
goto out;
if ((res = mp_init_multi(T, R, two, NULL, NULL, NULL))
!= MP_OKAY)
goto out;
/* SPECIAL CASE: if prime mod 4 == 3 /* SPECIAL CASE: if prime mod 4 == 3
* compute directly: res = n^(prime+1)/4 mod prime * compute directly: res = n^(prime+1)/4 mod prime
* Handbook of Applied Cryptography algorithm 3.36 * Handbook of Applied Cryptography algorithm 3.36
@@ -10985,42 +10987,52 @@ int mp_sqrtmod_prime(mp_int* n, mp_int* prime, mp_int* ret)
#ifdef WOLFSSL_SMALL_STACK #ifdef WOLFSSL_SMALL_STACK
if (t1) { if (t1) {
if (res != MP_INIT_E)
mp_clear(t1); mp_clear(t1);
XFREE(t1, NULL, DYNAMIC_TYPE_ECC_BUFFER); XFREE(t1, NULL, DYNAMIC_TYPE_ECC_BUFFER);
} }
if (C) { if (C) {
if (res != MP_INIT_E)
mp_clear(C); mp_clear(C);
XFREE(C, NULL, DYNAMIC_TYPE_ECC_BUFFER); XFREE(C, NULL, DYNAMIC_TYPE_ECC_BUFFER);
} }
if (Q) { if (Q) {
if (res != MP_INIT_E)
mp_clear(Q); mp_clear(Q);
XFREE(Q, NULL, DYNAMIC_TYPE_ECC_BUFFER); XFREE(Q, NULL, DYNAMIC_TYPE_ECC_BUFFER);
} }
if (S) { if (S) {
if (res != MP_INIT_E)
mp_clear(S); mp_clear(S);
XFREE(S, NULL, DYNAMIC_TYPE_ECC_BUFFER); XFREE(S, NULL, DYNAMIC_TYPE_ECC_BUFFER);
} }
if (Z) { if (Z) {
if (res != MP_INIT_E)
mp_clear(Z); mp_clear(Z);
XFREE(Z, NULL, DYNAMIC_TYPE_ECC_BUFFER); XFREE(Z, NULL, DYNAMIC_TYPE_ECC_BUFFER);
} }
if (M) { if (M) {
if (res != MP_INIT_E)
mp_clear(M); mp_clear(M);
XFREE(M, NULL, DYNAMIC_TYPE_ECC_BUFFER); XFREE(M, NULL, DYNAMIC_TYPE_ECC_BUFFER);
} }
if (T) { if (T) {
if (res != MP_INIT_E)
mp_clear(T); mp_clear(T);
XFREE(T, NULL, DYNAMIC_TYPE_ECC_BUFFER); XFREE(T, NULL, DYNAMIC_TYPE_ECC_BUFFER);
} }
if (R) { if (R) {
if (res != MP_INIT_E)
mp_clear(R); mp_clear(R);
XFREE(R, NULL, DYNAMIC_TYPE_ECC_BUFFER); XFREE(R, NULL, DYNAMIC_TYPE_ECC_BUFFER);
} }
if (two) { if (two) {
if (res != MP_INIT_E)
mp_clear(two); mp_clear(two);
XFREE(two, NULL, DYNAMIC_TYPE_ECC_BUFFER); XFREE(two, NULL, DYNAMIC_TYPE_ECC_BUFFER);
} }
#else #else
if (res != MP_INIT_E) {
mp_clear(t1); mp_clear(t1);
mp_clear(C); mp_clear(C);
mp_clear(Q); mp_clear(Q);
@@ -11030,6 +11042,7 @@ int mp_sqrtmod_prime(mp_int* n, mp_int* prime, mp_int* ret)
mp_clear(T); mp_clear(T);
mp_clear(R); mp_clear(R);
mp_clear(two); mp_clear(two);
}
#endif #endif
return res; return res;