commit 424c2655b98ab00fa35aa4a25fe553d24a17e638
author Janos Follath <janos.follath@arm.com> Wed Feb 21 09:26:36 2024 +0000
committer Janos Follath <janos.follath@arm.com> Wed Feb 21 09:26:36 2024 +0000
tree 0fb37a35fb67841bfc7c51ac8ac5069df89eabb5
parent 0512d178e01430ceeb97902a9f219e6575f672ee

Exp mod: tidy up temporary storage allocation

Signed-off-by: Janos Follath <janos.follath@arm.com>

library/bignum.c

diff --git a/library/bignum.c b/library/bignum.c
index 0b8fec3..7681982 100644
--- a/library/bignum.c
+++ b/library/bignum.c
@@ -1624,10 +1624,17 @@
         return ret;
     }
 
+    /*
+     * Allocate working memory for mbedtls_mpi_core_exp_mod()
+     */
+    size_t T_limbs = mbedtls_mpi_core_exp_mod_working_limbs(N->n, E->n);
+    mbedtls_mpi_uint *T = (mbedtls_mpi_uint*) mbedtls_calloc(T_limbs, sizeof(mbedtls_mpi_uint));
+    if (T == NULL) {
+        return MBEDTLS_ERR_MPI_ALLOC_FAILED;
+    }
+
     mbedtls_mpi RR;
     mbedtls_mpi_init(&RR);
-    mbedtls_mpi T;
-    mbedtls_mpi_init(&T);
 
     /*
      * If 1st call, pre-compute R^2 mod N
@@ -1670,19 +1677,13 @@
     MBEDTLS_MPI_CHK(mbedtls_mpi_grow(X, N->n));
 
     /*
-     * Allocate working memory for mbedtls_mpi_core_exp_mod()
-     */
-    size_t T_limbs = mbedtls_mpi_core_exp_mod_working_limbs(N->n, E->n);
-    MBEDTLS_MPI_CHK(mbedtls_mpi_grow(&T, T_limbs));
-
-    /*
      * Convert to and from Montgomery around mbedtls_mpi_core_exp_mod().
      */
     mbedtls_mpi_uint mm = mbedtls_mpi_core_montmul_init(N->p);
-    mbedtls_mpi_core_to_mont_rep(X->p, X->p, N->p, N->n, mm, RR.p, T.p);
+    mbedtls_mpi_core_to_mont_rep(X->p, X->p, N->p, N->n, mm, RR.p, T);
     mbedtls_mpi_core_exp_mod(X->p, X->p, N->p, N->n, E->p, E->n, RR.p,
-                             T.p);
-    mbedtls_mpi_core_from_mont_rep(X->p, X->p, N->p, N->n, mm, T.p);
+                             T);
+    mbedtls_mpi_core_from_mont_rep(X->p, X->p, N->p, N->n, mm, T);
 
     /*
      * Correct for negative A.
@@ -1694,7 +1695,7 @@
 
 cleanup:
 
-    mbedtls_mpi_free(&T);
+    mbedtls_mpi_zeroize_and_free(T, T_limbs);
 
     if (prec_RR == NULL || prec_RR->p == NULL) {
         mbedtls_mpi_free(&RR);