1
1
mirror of https://github.com/henrydcase/pqc.git synced 2024-11-22 23:48:58 +00:00

Merge pull request #54 from PQClean/no-dynamic-memory-allocations

Detect use of dynamic memory allocation functions
This commit is contained in:
Thom Wiggers 2019-02-27 14:24:11 +01:00 committed by GitHub
commit 2b381e9a78
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
2 changed files with 50 additions and 1 deletions

View File

@ -46,7 +46,7 @@ _The checking of items on this list is still being developed. Checked items shou
* [ ] API functions return `0` on success, negative on failure * [ ] API functions return `0` on success, negative on failure
* [x] 0 on success * [x] 0 on success
* [ ] Negative on failure (within restrictions of FO transform). * [ ] Negative on failure (within restrictions of FO transform).
* [ ] No dynamic memory allocations * [x] No dynamic memory allocations
* [ ] No branching on secret data (dynamically checked using valgrind) * [ ] No branching on secret data (dynamically checked using valgrind)
* [ ] No access to secret memory locations (dynamically checked using valgrind) * [ ] No access to secret memory locations (dynamically checked using valgrind)
* [x] Separate subdirectories (without symlinks) for each parameter set of each scheme * [x] Separate subdirectories (without symlinks) for each parameter set of each scheme

View File

@ -0,0 +1,49 @@
"""
Checks that no dynamic memory functions are used
"""
import pqclean
import helpers
import sys
import unittest
def test_dynamic_memory():
if sys.platform not in ['linux', 'darwin']:
raise unittest.SkipTest()
for scheme in pqclean.Scheme.all_schemes():
for implementation in scheme.implementations:
# Keep this loop outside, to allow multiple assertions
for function in ['malloc', 'free', 'realloc', 'calloc']:
yield (check_dynamic_memory,
scheme.name, implementation.name, function)
def check_dynamic_memory(scheme_name, implementation_name, function):
implementation = pqclean.Implementation.by_name(
scheme_name, implementation_name)
# 'make' will take care of not rebuilding existing library files
helpers.run_subprocess(
['make'],
implementation.path()
)
out = helpers.run_subprocess(
['nm', '-g', 'lib{}_{}.a'.format(scheme_name,
implementation_name)],
implementation.path()
)
lines = out.strip().split("\n")
for line in lines:
if 'U {}'.format(function) in line:
raise AssertionError(
"Illegal use of dynamic memory function '{}'".format(function))
if __name__ == '__main__':
try:
import nose2
nose2.main()
except ImportError:
import nose
nose.runmodule()