/[imapfilter]/imapfilter/memory.c

Diff of /imapfilter/memory.c

Parent Directory | Revision Log | View Patch Patch

-revision 1.11.2.2 by lefcha,
Sat Mar 29 14:05:01 2003 UTC
+revision 1.22 by lefcha,
Sat Feb 14 19:14:43 2004 UTC
 Line 1
  #include <stdlib.h>
+ #include <stdlib.h>
  #include <unistd.h>
- #include <sys/types.h>
  #include <string.h>
  #include <errno.h>
- #include <sys/mman.h>
+ #include <sys/types.h>          /* For POSIX.1-2001 non-conformant systems. */
- #include <sys/time.h>
+ #include <sys/time.h>           /* For POSIX.1-2001 non-conformant systems. */
  #include <sys/resource.h>
  #include "config.h"
  #include "imapfilter.h"
+ /* Secure memory information. */
+ typedef struct secmem {
+         void *buf;              /* Allocated memory buffer. */
+         size_t size;            /* Size of the buffer. */
+         struct secmem *prev, *next;     /* Previous/next node of doubly linked
+                                          * list. */
+ } secmem_t;
  extern unsigned int options;
- #ifdef MEMORY_LOCK
- extern uid_t ruid, euid;
- #endif
- static secmem_t *smem = NULL;   /* First node of secure memory linked list. */
+ static secmem_t *secmem = NULL; /* First node of secure memory linked list. */
+ void secmem_append(secmem_t * sm);
+ secmem_t *secmem_find(void *ptr);
+ void secmem_remove(secmem_t * sm);
  /*
   * A malloc() that checks the results and dies in case of error.
   */
- void *xmalloc(size_t size)
+ void *
+ xmalloc(size_t size)
  {
-     void *ptr;
+         void *ptr;
-     ptr = (void *)malloc(size);
+         ptr = (void *)malloc(size);
-     if (!ptr)
+         if (ptr == NULL)
-         fatal(ERROR_MEMORY_ALLOCATION,
+                 fatal(ERROR_MEMALLOC,
-               "imapfilter: allocating memory; %s\n", strerror(errno));
+                     "allocating memory; %s\n", strerror(errno));
-     return ptr;
+         return ptr;
  }
  /*
   * A realloc() that checks the results and dies in case of error.
   */
- void *xrealloc(void *ptr, size_t size)
+ void *
+ xrealloc(void *ptr, size_t size)
  {
-     ptr = (void *)realloc(ptr, size);
+         ptr = (void *)realloc(ptr, size);
-     if (!ptr)
+         if (ptr == NULL)
-         fatal(ERROR_MEMORY_ALLOCATION,
+                 fatal(ERROR_MEMALLOC,
-               "imapfilter: allocating memory; %s\n", strerror(errno));
+                     "allocating memory; %s\n", strerror(errno));
-     return ptr;
+         return ptr;
  }
  /*
   * A free() that dies if fed with NULL pointer.
   */
- void xfree(void *ptr)
+ void
+ xfree(void *ptr)
  {
-     if (!ptr)
-         fatal(ERROR_MEMORY_ALLOCATION,
+         if (ptr == NULL)
-               "imapfilter: NULL pointer given as argument");
+                 fatal(ERROR_MEMALLOC,
-     free(ptr);
+                     "NULL pointer given as argument");
+         free(ptr);
  }
  /*
   * A strdup() that checks the results and dies in case of error.
   */
- char *xstrdup(const char *s)
+ char *
+ xstrdup(const char *s)
  {
-     char *cp;
+         char *cp;
-     cp = strdup(s);
+         cp = strdup(s);
-     if (!cp)
+         if (cp == NULL)
-         fatal(ERROR_MEMORY_ALLOCATION,
+                 fatal(ERROR_MEMALLOC, "allocating memory; %s\n",
-               "imapfilter: allocating memory; %s\n", strerror(errno));
+                     strerror(errno));
-     return cp;
+         return cp;
  }
-Line 85 
 char *xstrdup(const char *s)
+Line 100 
 char *xstrdup(const char *s)
   * Secure memory malloc().  Locks memory and keeps information about the
   * chunk that was allocated.
   */
- void *smalloc(size_t size)
+ void *
+ smalloc(size_t size)
  {
- #ifdef MEMORY_LOCK
+         void *ptr;
-     int r;
+         secmem_t *sm;
-     static int w = 0;
- #endif
-     void *ptr;
-     secmem_t *node;
-     ptr = xmalloc(size);
- #ifdef MEMORY_LOCK
-     seteuid(euid);              /* Gain root privileges. */
-     r = mlock(ptr, size);
-     seteuid(ruid);              /* Drop root privileges. */
-     if (getuid() != geteuid())
-         fatal(ERROR_SETUID, "imapfilter: failed to drop privileges\n");
+         ptr = xmalloc(size);
-     if (options & OPTION_WARNING && r && !w) {
+         sm = (secmem_t *) xmalloc(sizeof(secmem_t));
-         error("imapfilter: warning: using insecure memory\n");
-         w = 1;
-     }
- #endif
-     node = (secmem_t *) xmalloc(sizeof(secmem_t));
-     node->buf = ptr;
+         sm->buf = ptr;
-     node->size = size;
+         sm->size = size;
-     node->prev = node->next = NULL;
+         sm->prev = sm->next = NULL;
-     secmem_append(node);
+         secmem_append(sm);
-     return ptr;
+         return ptr;
  }
-Line 126 
 void *smalloc(size_t size)
+Line 124 
 void *smalloc(size_t size)
   * Secure memory realloc().  Resize memory by allocating a new memory chunk
   * and NULL fill old memory, in order to protect sensitive data.
   */
- void *srealloc(void *ptr, size_t size)
+ void *
+ srealloc(void *ptr, size_t size)
  {
-     void *p;
+         void *p;
-     secmem_t *node;
+         secmem_t *sm;
-     if (!(node = (secmem_t *) secmem_find(ptr))) {
+         if (!(sm = (secmem_t *) secmem_find(ptr))) {
-         ptr = xrealloc(ptr, size);
+                 ptr = xrealloc(ptr, size);
-         return ptr;
+                 return ptr;
-     }
+         }
-     p = smalloc(size);
+         p = smalloc(size);
-     memcpy(p, node->buf, min(node->size, size));
+         memcpy(p, sm->buf, min(sm->size, size));
-     memset(node->buf, 0, node->size);
+         memset(sm->buf, 0, sm->size);
-     secmem_remove(node);
+         secmem_remove(sm);
-     xfree(node->buf);
+         xfree(sm->buf);
-     xfree(node);
+         xfree(sm);
-     return p;
+         return p;
  }
  /*
   * Secure memory free().  NULL fill memory before freeing it.
   */
- void sfree(void *ptr)
+ void
+ sfree(void *ptr)
  {
-     secmem_t *node;
+         secmem_t *sm;
-     if (!(node = (secmem_t *) secmem_find(ptr))) {
+         if (!(sm = (secmem_t *) secmem_find(ptr))) {
-         xfree(ptr);
+                 xfree(ptr);
-         return;
+                 return;
-     }
+         }
+         memset(sm->buf, 0, sm->size);
-     memset(node->buf, 0, node->size);
+         secmem_remove(sm);
-     secmem_remove(node);
+         xfree(sm->buf);
-     xfree(node->buf);
+         xfree(sm);
-     xfree(node);
  }
  /*
   * Secure memory strdup().  Uses secure memory allocation.
   */
- char *sstrdup(const char *s)
+ char *
+ sstrdup(const char *s)
  {
-     char *p;
+         char *p;
-     p = (char *)smalloc(strlen(s) + 1);
+         p = (char *)smalloc(strlen(s) + 1);
-     xstrncpy(p, s, strlen(s));
+         xstrncpy(p, s, strlen(s));
-     return p;
+         return p;
  }
  /*
   * Append information about the newly allocated memory buffer.
   */
- void secmem_append(secmem_t * node)
+ void
+ secmem_append(secmem_t * sm)
  {
-     secmem_t *pos;
+         secmem_t *pos;
-     secmem_t **app;
+         secmem_t **app;
-     app = &smem;
+         app = &secmem;
-     pos = smem;
+         pos = secmem;
-     while (pos) {
+         while (pos) {
-         node->prev = pos;
+                 sm->prev = pos;
-         app = &(pos->next);
+                 app = &(pos->next);
-         pos = pos->next;
+                 pos = pos->next;
-     }
+         }
-     *app = node;
+         *app = sm;
  }
  /*
   * Find the record of a memory buffer in the secure memory linked list.
   */
- secmem_t *secmem_find(void *ptr)
+ secmem_t *
+ secmem_find(void *ptr)
  {
-     secmem_t *pos;
+         secmem_t *pos;
-     pos = smem;
+         pos = secmem;
-     while (pos && pos->buf != ptr)
+         while (pos != NULL && pos->buf != ptr)
-         pos = pos->next;
+                 pos = pos->next;
-     return pos;
+         return pos;
  }
  /*
   * Remove a record of a secure memory buffer.
   */
- void secmem_remove(secmem_t * node)
+ void
+ secmem_remove(secmem_t * sm)
  {
-     if (node->prev)
-         node->prev->next = node->next;
-     if (node->next)
-         node->next->prev = node->prev;
-     if (smem == node)
-         smem = node->next;
- }
- /*
+         if (sm->prev != NULL)
-  * Overwrite/clear all secure memory.
+                 sm->prev->next = sm->next;
-  */
+         if (sm->next != NULL)
- void secmem_clear(void)
+                 sm->next->prev = sm->prev;
- {
+         if (secmem == sm)
-     secmem_t *p, *t;
+                 secmem = sm->next;
-     for (p = smem; p; p = t) {
-         t = p->next;
-         sfree(p->buf);
-     }
  }
- #ifdef MEMORY_LOCK
  /*
-  * Lock memory of allocated buffers.
+  * Overwrite/clear all secure memory.
   */
- void secmem_lock(void)
+ void
+ secmem_clear(void)
  {
-     secmem_t *p;
+         secmem_t *p, *t;
-     seteuid(euid);              /* Gain root privileges. */
-     for (p = smem; p; p = p->next)
-         mlock(p->buf, p->size);
-     seteuid(ruid);              /* Drop root privileges. */
-     if (getuid() != geteuid())
+         for (p = secmem; p != NULL; p = t) {
-         fatal(ERROR_SETUID, "imapfilter: failed to drop privileges\n");
+                 t = p->next;
+                 sfree(p->buf);
+         }
  }
- #endif
  /*
   * Disable core file dumping.
   */
- void corefile_disable(void)
+ void
+ corefile_disable(void)
  {
-     struct rlimit rl;
+         struct rlimit rl;
-     getrlimit(RLIMIT_CORE, &rl);
+         getrlimit(RLIMIT_CORE, &rl);
-     rl.rlim_cur = rl.rlim_max = 0;
+         rl.rlim_cur = rl.rlim_max = 0;
-     setrlimit(RLIMIT_CORE, &rl);
+         setrlimit(RLIMIT_CORE, &rl);
  }

 Legend:



Removed from v.1.11.2.2
 


changed lines


 
Added in v.1.22
 Legend:



Removed from v.1.11.2.2
 


changed lines


 
Added in v.1.22
-Removed from v.1.11.2.2
+Added in v.1.22

webmaster@linux.gr	ViewVC Help
Powered by ViewVC 1.1.26