through volatile pointers with explicit_bzero().
ok beck@ jsing@
#ifdef OPENSSL_NO_ASM
#ifdef OPENSSL_BN_ASM_MONT
-#include <alloca.h>
/*
* This is essentially reference implementation, which may or may not
* result in performance improvement. E.g. on IA-32 this routine was
#ifdef mul64
BN_ULONG mh;
#endif
- volatile BN_ULONG *vp;
int i = 0, j;
#if 0 /* template for platform-specific implementation */
if (ap == bp)
return bn_sqr_mont(rp, ap, np, n0p, num);
#endif
- vp = tp = alloca((num + 2)*sizeof(BN_ULONG));
+ tp = reallocarray(NULL, num + 2, sizeof(BN_ULONG));
+ if (tp == NULL)
+ return 0;
n0 = *n0p;
if (tp[num] != 0 || tp[num - 1] >= np[num - 1]) {
c0 = bn_sub_words(rp, tp, np, num);
if (tp[num] != 0 || c0 == 0) {
- for (i = 0; i < num + 2; i++)
- vp[i] = 0;
- return 1;
+ goto out;
}
}
- for (i = 0; i < num; i++)
- rp[i] = tp[i], vp[i] = 0;
- vp[num] = 0;
- vp[num + 1] = 0;
+ memcpy(rp, tp, num * sizeof(BN_ULONG));
+out:
+ explicit_bzero(tp, (num + 2) * sizeof(BN_ULONG));
+ free(tp);
return 1;
}
#else
#ifdef OPENSSL_NO_ASM
#ifdef OPENSSL_BN_ASM_MONT
-#include <alloca.h>
int
bn_mul_mont(BN_ULONG *rp, const BN_ULONG *ap, const BN_ULONG *bp,
const BN_ULONG *np, const BN_ULONG *n0p, int num)
{
BN_ULONG c0, c1, *tp, n0 = *n0p;
- volatile BN_ULONG *vp;
int i = 0, j;
- vp = tp = alloca((num + 2) * sizeof(BN_ULONG));
-
- for(i = 0; i <= num; i++)
- tp[i] = 0;
+ tp = calloc(NULL, num + 2, sizeof(BN_ULONG));
+ if (tp == NULL)
+ return 0;
for (i = 0; i < num; i++) {
c0 = bn_mul_add_words(tp, ap, num, bp[i]);
if (tp[num] != 0 || tp[num - 1] >= np[num - 1]) {
c0 = bn_sub_words(rp, tp, np, num);
if (tp[num] != 0 || c0 == 0) {
- for (i = 0; i < num + 2; i++)
- vp[i] = 0;
- return 1;
+ goto out;
}
}
- for (i = 0; i < num; i++)
- rp[i] = tp[i], vp[i] = 0;
- vp[num] = 0;
- vp[num + 1] = 0;
+ memcpy(rp, tp, num * sizeof(BN_ULONG));
+out:
+ explicit_bzero(tp, (num + 2) * sizeof(BN_ULONG));
+ free(tp);
return 1;
}
#else
#include "bn_lcl.h"
#include <stdlib.h>
-#if defined(__GNUC__)
-# ifndef alloca
-# define alloca(s) __builtin_alloca((s))
-# endif
-#endif
/* maximum precomputation table size for *variable* sliding windows */
#define TABLE_SIZE 32
numPowers = 1 << window;
powerbufLen = sizeof(m->d[0]) * (top * numPowers +
((2*top) > numPowers ? (2*top) : numPowers));
-#ifdef alloca
- if (powerbufLen < 3072)
- powerbufFree = alloca(powerbufLen +
- MOD_EXP_CTIME_MIN_CACHE_LINE_WIDTH);
- else
-#endif
if ((powerbufFree = (unsigned char*)malloc(powerbufLen +
MOD_EXP_CTIME_MIN_CACHE_LINE_WIDTH)) == NULL)
goto err;
powerbuf = MOD_EXP_CTIME_ALIGN(powerbufFree);
memset(powerbuf, 0, powerbufLen);
-#ifdef alloca
- if (powerbufLen < 3072)
- powerbufFree = NULL;
-#endif
-
/* lay down tmp and am right after powers table */
tmp.d = (BN_ULONG *)(powerbuf + sizeof(m->d[0]) * top * numPowers);
am.d = tmp.d + top;
#ifdef OPENSSL_NO_ASM
#ifdef OPENSSL_BN_ASM_MONT
-#include <alloca.h>
/*
* This is essentially reference implementation, which may or may not
* result in performance improvement. E.g. on IA-32 this routine was
#ifdef mul64
BN_ULONG mh;
#endif
- volatile BN_ULONG *vp;
int i = 0, j;
#if 0 /* template for platform-specific implementation */
if (ap == bp)
return bn_sqr_mont(rp, ap, np, n0p, num);
#endif
- vp = tp = alloca((num + 2)*sizeof(BN_ULONG));
+ tp = reallocarray(NULL, num + 2, sizeof(BN_ULONG));
+ if (tp == NULL)
+ return 0;
n0 = *n0p;
if (tp[num] != 0 || tp[num - 1] >= np[num - 1]) {
c0 = bn_sub_words(rp, tp, np, num);
if (tp[num] != 0 || c0 == 0) {
- for (i = 0; i < num + 2; i++)
- vp[i] = 0;
- return 1;
+ goto out;
}
}
- for (i = 0; i < num; i++)
- rp[i] = tp[i], vp[i] = 0;
- vp[num] = 0;
- vp[num + 1] = 0;
+ memcpy(rp, tp, num * sizeof(BN_ULONG));
+out:
+ explicit_bzero(tp, (num + 2) * sizeof(BN_ULONG));
+ free(tp);
return 1;
}
#else
#ifdef OPENSSL_NO_ASM
#ifdef OPENSSL_BN_ASM_MONT
-#include <alloca.h>
int
bn_mul_mont(BN_ULONG *rp, const BN_ULONG *ap, const BN_ULONG *bp,
const BN_ULONG *np, const BN_ULONG *n0p, int num)
{
BN_ULONG c0, c1, *tp, n0 = *n0p;
- volatile BN_ULONG *vp;
int i = 0, j;
- vp = tp = alloca((num + 2) * sizeof(BN_ULONG));
-
- for(i = 0; i <= num; i++)
- tp[i] = 0;
+ tp = calloc(NULL, num + 2, sizeof(BN_ULONG));
+ if (tp == NULL)
+ return 0;
for (i = 0; i < num; i++) {
c0 = bn_mul_add_words(tp, ap, num, bp[i]);
if (tp[num] != 0 || tp[num - 1] >= np[num - 1]) {
c0 = bn_sub_words(rp, tp, np, num);
if (tp[num] != 0 || c0 == 0) {
- for (i = 0; i < num + 2; i++)
- vp[i] = 0;
- return 1;
+ goto out;
}
}
- for (i = 0; i < num; i++)
- rp[i] = tp[i], vp[i] = 0;
- vp[num] = 0;
- vp[num + 1] = 0;
+ memcpy(rp, tp, num * sizeof(BN_ULONG));
+out:
+ explicit_bzero(tp, (num + 2) * sizeof(BN_ULONG));
+ free(tp);
return 1;
}
#else
#include "bn_lcl.h"
#include <stdlib.h>
-#if defined(__GNUC__)
-# ifndef alloca
-# define alloca(s) __builtin_alloca((s))
-# endif
-#endif
/* maximum precomputation table size for *variable* sliding windows */
#define TABLE_SIZE 32
numPowers = 1 << window;
powerbufLen = sizeof(m->d[0]) * (top * numPowers +
((2*top) > numPowers ? (2*top) : numPowers));
-#ifdef alloca
- if (powerbufLen < 3072)
- powerbufFree = alloca(powerbufLen +
- MOD_EXP_CTIME_MIN_CACHE_LINE_WIDTH);
- else
-#endif
if ((powerbufFree = (unsigned char*)malloc(powerbufLen +
MOD_EXP_CTIME_MIN_CACHE_LINE_WIDTH)) == NULL)
goto err;
powerbuf = MOD_EXP_CTIME_ALIGN(powerbufFree);
memset(powerbuf, 0, powerbufLen);
-#ifdef alloca
- if (powerbufLen < 3072)
- powerbufFree = NULL;
-#endif
-
/* lay down tmp and am right after powers table */
tmp.d = (BN_ULONG *)(powerbuf + sizeof(m->d[0]) * top * numPowers);
am.d = tmp.d + top;
projects / openbsd / commitdiff