Skip to content

Commit

Permalink
Fixes that prevent memory leaks when using OQS.
Browse files Browse the repository at this point in the history
Fixes ZD 17177.
  • Loading branch information
anhu committed Jan 26, 2024
1 parent 3db58af commit fe87f16
Show file tree
Hide file tree
Showing 5 changed files with 35 additions and 5 deletions.
28 changes: 23 additions & 5 deletions src/tls.c
Original file line number Diff line number Diff line change
Expand Up @@ -7658,6 +7658,13 @@ static int TLSX_KeyShare_GenPqcKey(WOLFSSL *ssl, KeyShareEntry* kse)
word32 privSz = 0;
word32 pubSz = 0;

/* This gets called twice. Once during parsing of the key share and once
* during the population of the extension. No need to do work the second
* time. Just return success if its already been done. */
if (kse->pubKey != NULL) {
return ret;
}

findEccPqc(&ecc_group, &oqs_group, kse->group);
ret = kyber_id2type(oqs_group, &type);
if (ret == NOT_COMPILED_IN) {
Expand Down Expand Up @@ -7735,10 +7742,11 @@ static int TLSX_KeyShare_GenPqcKey(WOLFSSL *ssl, KeyShareEntry* kse)

/* Note we are saving the OQS private key and ECC private key
* separately. That's because the ECC private key is not simply a
* buffer. Its is an ecc_key struct.
*/
* buffer. Its is an ecc_key struct. Typically do not need the private
* key size, but will need to zero it out upon freeing. */
kse->privKey = privKey;
privKey = NULL;
kse->privKeyLen = privSz;

kse->key = ecc_kse->key;
ecc_kse->key = NULL;
Expand Down Expand Up @@ -7814,9 +7822,19 @@ static void TLSX_KeyShare_FreeAll(KeyShareEntry* list, void* heap)
#endif
}
#ifdef HAVE_PQC
else if (WOLFSSL_NAMED_GROUP_IS_PQC(current->group) &&
current->key != NULL) {
ForceZero((byte*)current->key, current->keyLen);
else if (WOLFSSL_NAMED_GROUP_IS_PQC(current->group)) {
if (current->key != NULL) {
ForceZero((byte*)current->key, current->keyLen);
}
if (current->pubKey != NULL) {
XFREE(current->pubKey, heap, DYNAMIC_TYPE_PUBLIC_KEY);
current->pubKey = NULL;
}
if (current->privKey != NULL) {
ForceZero(current->privKey, current->privKeyLen);
XFREE(current->privKey, heap, DYNAMIC_TYPE_PRIVATE_KEY);
current->privKey = NULL;
}
}
#endif
else {
Expand Down
5 changes: 5 additions & 0 deletions wolfcrypt/src/port/liboqs/liboqs.c
Original file line number Diff line number Diff line change
Expand Up @@ -99,6 +99,11 @@ int wolfSSL_liboqsInit(void)
return ret;
}

void wolfSSL_liboqsClose(void)
{
wc_FreeRng(&liboqsDefaultRNG);
}

int wolfSSL_liboqsRngMutexLock(WC_RNG* rng)
{
int ret = wolfSSL_liboqsInit();
Expand Down
4 changes: 4 additions & 0 deletions wolfcrypt/src/wc_port.c
Original file line number Diff line number Diff line change
Expand Up @@ -493,6 +493,10 @@ int wolfCrypt_Cleanup(void)
#endif
}

#if defined(HAVE_LIBOQS)
wolfSSL_liboqsClose();
#endif

return ret;
}

Expand Down
1 change: 1 addition & 0 deletions wolfssl/internal.h
Original file line number Diff line number Diff line change
Expand Up @@ -3365,6 +3365,7 @@ typedef struct KeyShareEntry {
word32 pubKeyLen; /* Public key length */
#if !defined(NO_DH) || defined(HAVE_PQC)
byte* privKey; /* Private key - DH and PQ KEMs only */
word32 privKeyLen;/* Only for PQ KEMs. */
#endif
#ifdef WOLFSSL_ASYNC_CRYPT
int lastRet;
Expand Down
2 changes: 2 additions & 0 deletions wolfssl/wolfcrypt/port/liboqs/liboqs.h
Original file line number Diff line number Diff line change
Expand Up @@ -47,6 +47,8 @@ implementations for Post-Quantum cryptography algorithms.

int wolfSSL_liboqsInit(void);

void wolfSSL_liboqsClose(void);

int wolfSSL_liboqsRngMutexLock(WC_RNG* rng);

int wolfSSL_liboqsRngMutexUnlock(void);
Expand Down

0 comments on commit fe87f16

Please sign in to comment.