aesni: Align all class instances to 16 byte boundaries

While the required members are aligned in the struct as required, on 32-bit
platforms the allocator aligns the structures itself to 8 bytes only. This
results in non-aligned struct members, and invalid memory accesses.

diff --git a/src/libstrongswan/plugins/aesni/aesni_cbc.c b/src/libstrongswan/plugins/aesni/aesni_cbc.c
index cf18faf4b89f3afde0ded9b1d3f47d66efa0fb20..f2fce0f137c8616c580fe35f3ea5062d9b5dc779 100644 (file)
--- a/src/libstrongswan/plugins/aesni/aesni_cbc.c
+++ b/src/libstrongswan/plugins/aesni/aesni_cbc.c
@@ -693,7 +693,7 @@ METHOD(crypter_t, destroy, void,
 {
        DESTROY_IF(this->ekey);
        DESTROY_IF(this->dkey);
-       free(this);
+       free_align(this);
 }
 
 /**
@@ -720,7 +720,7 @@ aesni_cbc_t *aesni_cbc_create(encryption_algorithm_t algo, size_t key_size)
                        return NULL;
        }
 
-       INIT(this,
+       INIT_ALIGN(this, sizeof(__m128i),
                .public = {
                        .crypter = {
                                .encrypt = _encrypt,

diff --git a/src/libstrongswan/plugins/aesni/aesni_ccm.c b/src/libstrongswan/plugins/aesni/aesni_ccm.c
index 20f2e4fe1498c44797cc9d3fdcd2942d91843734..0e4a24f30bcff6b6cffda9abb8a5c04d59cf2608 100644 (file)
--- a/src/libstrongswan/plugins/aesni/aesni_ccm.c
+++ b/src/libstrongswan/plugins/aesni/aesni_ccm.c
@@ -902,7 +902,7 @@ METHOD(aead_t, destroy, void,
 {
        DESTROY_IF(this->key);
        this->iv_gen->destroy(this->iv_gen);
-       free(this);
+       free_align(this);
 }
 
 /**
@@ -949,7 +949,7 @@ aesni_ccm_t *aesni_ccm_create(encryption_algorithm_t algo,
                        return NULL;
        }
 
-       INIT(this,
+       INIT_ALIGN(this, sizeof(__m128i),
                .public = {
                        .aead = {
                                .encrypt = _encrypt,

diff --git a/src/libstrongswan/plugins/aesni/aesni_cmac.c b/src/libstrongswan/plugins/aesni/aesni_cmac.c
index f94960dc61a473855c3f139b112ebd508d73a6e7..a35445fb48921fb6609d168bd5aa33b347c8456e 100644 (file)
--- a/src/libstrongswan/plugins/aesni/aesni_cmac.c
+++ b/src/libstrongswan/plugins/aesni/aesni_cmac.c
@@ -314,7 +314,7 @@ METHOD(mac_t, destroy, void,
        DESTROY_IF(this->k);
        memwipe(&this->k1, sizeof(this->k1));
        memwipe(&this->k2, sizeof(this->k2));
-       free(this);
+       free_align(this);
 }
 
 /*
@@ -324,7 +324,7 @@ mac_t *aesni_cmac_create(encryption_algorithm_t algo, size_t key_size)
 {
        private_mac_t *this;
 
-       INIT(this,
+       INIT_ALIGN(this, sizeof(__m128i),
                .public = {
                        .get_mac = _get_mac,
                        .get_mac_size = _get_mac_size,

diff --git a/src/libstrongswan/plugins/aesni/aesni_ctr.c b/src/libstrongswan/plugins/aesni/aesni_ctr.c
index e6830c1af79d8cfe26569dca5a1b0e3662ed686a..e6f9b841ade92c0331406e40f6049ccc6bfb4617 100644 (file)
--- a/src/libstrongswan/plugins/aesni/aesni_ctr.c
+++ b/src/libstrongswan/plugins/aesni/aesni_ctr.c
@@ -623,7 +623,7 @@ METHOD(crypter_t, destroy, void,
        private_aesni_ctr_t *this)
 {
        DESTROY_IF(this->key);
-       free(this);
+       free_align(this);
 }
 
 /**
@@ -650,7 +650,7 @@ aesni_ctr_t *aesni_ctr_create(encryption_algorithm_t algo, size_t key_size)
                        return NULL;
        }
 
-       INIT(this,
+       INIT_ALIGN(this, sizeof(__m128i),
                .public = {
                        .crypter = {
                                .encrypt = _crypt,

diff --git a/src/libstrongswan/plugins/aesni/aesni_gcm.c b/src/libstrongswan/plugins/aesni/aesni_gcm.c
index f6bbea2c6c25e2eb990e7e6083694d96221d27a0..6296ad2fd381d905783c06d4122d2055d7bc4815 100644 (file)
--- a/src/libstrongswan/plugins/aesni/aesni_gcm.c
+++ b/src/libstrongswan/plugins/aesni/aesni_gcm.c
@@ -1465,7 +1465,7 @@ METHOD(aead_t, destroy, void,
        memwipe(&this->hhh, sizeof(this->hhh));
        memwipe(&this->hhhh, sizeof(this->hhhh));
        this->iv_gen->destroy(this->iv_gen);
-       free(this);
+       free_align(this);
 }
 
 /**
@@ -1512,7 +1512,7 @@ aesni_gcm_t *aesni_gcm_create(encryption_algorithm_t algo,
                        return NULL;
        }
 
-       INIT(this,
+       INIT_ALIGN(this, sizeof(__m128i),
                .public = {
                        .aead = {
                                .encrypt = _encrypt,

diff --git a/src/libstrongswan/plugins/aesni/aesni_key.c b/src/libstrongswan/plugins/aesni/aesni_key.c
index 4d7948dd7fa44a14b04e6da1eaef259dddd268e0..523266a306f006809b002d4dc8ad7fa637939e7b 100644 (file)
--- a/src/libstrongswan/plugins/aesni/aesni_key.c
+++ b/src/libstrongswan/plugins/aesni/aesni_key.c
@@ -244,7 +244,7 @@ METHOD(aesni_key_t, destroy, void,
        private_aesni_key_t *this)
 {
        memwipe(this, sizeof(*this) + (this->public.rounds + 1) * AES_BLOCK_SIZE);
-       free(this);
+       free_align(this);
 }
 
 /**
@@ -270,7 +270,7 @@ aesni_key_t *aesni_key_create(bool encrypt, chunk_t key)
                        return NULL;
        }
 
-       INIT_EXTRA(this, (rounds + 1) * AES_BLOCK_SIZE,
+       INIT_EXTRA_ALIGN(this, (rounds + 1) * AES_BLOCK_SIZE, sizeof(__m128i),
                .public = {
                        .destroy = _destroy,
                        .rounds = rounds,

diff --git a/src/libstrongswan/plugins/aesni/aesni_xcbc.c b/src/libstrongswan/plugins/aesni/aesni_xcbc.c
index 13bc2cc3ff03fded8fd4b7fce79da96850535e7b..b2e8cd5ca48e62fcdaaf9df0d8eac137018b0690 100644 (file)
--- a/src/libstrongswan/plugins/aesni/aesni_xcbc.c
+++ b/src/libstrongswan/plugins/aesni/aesni_xcbc.c
@@ -309,7 +309,7 @@ METHOD(mac_t, destroy, void,
        DESTROY_IF(this->k1);
        memwipe(&this->k2, sizeof(this->k2));
        memwipe(&this->k3, sizeof(this->k3));
-       free(this);
+       free_align(this);
 }
 
 /*
@@ -319,7 +319,7 @@ mac_t *aesni_xcbc_create(encryption_algorithm_t algo, size_t key_size)
 {
        private_aesni_mac_t *this;
 
-       INIT(this,
+       INIT_ALIGN(this, sizeof(__m128i),
                .public = {
                        .get_mac = _get_mac,
                        .get_mac_size = _get_mac_size,