diff options
| author | Mattias Andrée <maandree@kth.se> | 2022-07-07 15:32:34 +0200 | 
|---|---|---|
| committer | Mattias Andrée <maandree@kth.se> | 2022-07-07 15:32:34 +0200 | 
| commit | c44852846418d687027912d4150404feed0161f9 (patch) | |
| tree | 8e08a8420179dfe2909c9a77573c5f537a85818c | |
| parent | Don't marshal w (diff) | |
| download | libsha2-c44852846418d687027912d4150404feed0161f9.tar.gz libsha2-c44852846418d687027912d4150404feed0161f9.tar.bz2 libsha2-c44852846418d687027912d4150404feed0161f9.tar.xz | |
Use malloc by default but allow bounded alloca
Signed-off-by: Mattias Andrée <maandree@kth.se>
Diffstat (limited to '')
| -rw-r--r-- | common.h | 6 | ||||
| -rw-r--r-- | config.mk | 6 | ||||
| -rw-r--r-- | sum_fd.c | 31 | ||||
| -rw-r--r-- | update.c | 2 | 
4 files changed, 44 insertions, 1 deletions
| @@ -5,10 +5,16 @@  #include <alloca.h>  #include <errno.h>  #include <stddef.h> +#include <stdlib.h>  #include <string.h>  #include <unistd.h> +#ifndef ALLOCA_LIMIT +# define ALLOCA_LIMIT 0 +#endif + +  /**   * Process a chunk using SHA-2   *  @@ -6,3 +6,9 @@ CC = c99  CPPFLAGS = -D_DEFAULT_SOURCE -D_BSD_SOURCE -D_XOPEN_SOURCE=700  CFLAGS   = -Wall -O3  LDFLAGS  = -s + +# You can add -DALLOCA_LIMIT=# to CPPFLAGS, where # is a size_t +# value, to put a limit on how large allocation the library is +# allowed to make with alloca(3). For buffers that can have any +# size this limit will be used if it wants to allocate a larger +# buffer. Choose 0 to use malloc(3) instead of alloca(3). @@ -7,17 +7,42 @@ libsha2_sum_fd(int fd, enum libsha2_algorithm algorithm, void *restrict hashsum)  {  	struct libsha2_state state;  	ssize_t r; +#ifndef _WIN32  	struct stat attr; +#endif  	size_t blksize = 4096;  	char *restrict chunk;  	if (libsha2_init(&state, algorithm) < 0)  		return -1; +#ifndef _WIN32  	if (fstat(fd, &attr) == 0 && attr.st_blksize > 0)  		blksize = (size_t)(attr.st_blksize); +#endif +#if ALLOCA_LIMIT > 0 +	if (blksize > (size_t)ALLOCA_LIMIT) { +		blksize = (size_t)ALLOCA_LIMIT; +		blksize -= blksize % sizeof(((struct libsha2_state)NULL)->chunk); +		if (!blksize) +			blksize = sizeof(((struct libsha2_state)NULL)->chunk); +	} +# if defined(__clang__) +	/* We are using a limit so it's just like declaring an array +	 * in a function, except we might use less of the stack. */ +#  pragma clang diagnostic push +#  pragma clang diagnostic ignored "-Walloca" +# endif  	chunk = alloca(blksize); +# if defined(__clang__) +#  pragma clang diagnostic pop +# endif +#else +	chunk = malloc(blksize); +	if (!chunk) +		return -1; +#endif  	for (;;) {  		r = read(fd, chunk, blksize); @@ -26,11 +51,17 @@ libsha2_sum_fd(int fd, enum libsha2_algorithm algorithm, void *restrict hashsum)  				break;  			if (errno == EINTR)  				continue; +#if ALLOCA_LIMIT <= 0 +			free(chunk); +#endif  			return -1;  		}  		libsha2_update(&state, chunk, (size_t)r * 8);  	}  	libsha2_digest(&state, NULL, 0, hashsum); +#if ALLOCA_LIMIT <= 0 +       free(chunk); +#endif  	return 0;  } @@ -14,7 +14,7 @@ libsha2_update(struct libsha2_state *restrict state, const void *restrict messag  	if (off) {  		n = msglen < state->chunk_size - off ? msglen : state->chunk_size - off; -		memcpy(state->chunk + off, message, n); +		memcpy(&state->chunk[off], message, n);  		if (off + n == state->chunk_size)  			libsha2_process(state, state->chunk);  		message += n; | 
