// Copyright (c) 2009-2010 Satoshi Nakamoto

// Copyright (c) 2009-2021 The Bitcoin Core developers

// Distributed under the MIT software license, see the accompanying

// file COPYING or http://www.opensource.org/licenses/mit-license.php.

#ifndef BITCOIN_SUPPORT_ALLOCATORS_SECURE_H

#define BITCOIN_SUPPORT_ALLOCATORS_SECURE_H

#include <support/lockedpool.h>

#include <support/cleanse.h>

#include <memory>

#include <string>

//

// Allocator that locks its contents from being paged

// out of memory and clears its contents before deletion.

//

template <typename T>

struct secure_allocator {

    using value_type = T;

    secure_allocator() = default;

    template <typename U>

    secure_allocator(const secure_allocator<U>&) noexcept {}

    T* allocate(std::size_t n)

    {

        T* allocation = static_cast<T*>(LockedPoolManager::Instance().alloc(sizeof(T) * n));

        if (!allocation) {

            throw std::bad_alloc();

        }

        return allocation;

    }

Unexecuted instantiation: _ZN16secure_allocatorISt5arrayIhLm32EEE8allocateEm

Unexecuted instantiation: _ZN16secure_allocatorISt5arrayIhLm96EEE8allocateEm

Unexecuted instantiation: _ZN16secure_allocatorIhE8allocateEm

Unexecuted instantiation: _ZN16secure_allocatorIcE8allocateEm

Unexecuted instantiation: random.cpp:_ZN16secure_allocatorIN12_GLOBAL__N_18RNGStateEE8allocateEm

    void deallocate(T* p, std::size_t n)

    {

        if (p != nullptr) {

            memory_cleanse(p, sizeof(T) * n);

        }

        LockedPoolManager::Instance().free(p);

    }

Unexecuted instantiation: _ZN16secure_allocatorISt5arrayIhLm32EEE10deallocateEPS1_m

Unexecuted instantiation: _ZN16secure_allocatorISt5arrayIhLm96EEE10deallocateEPS1_m

Unexecuted instantiation: _ZN16secure_allocatorIhE10deallocateEPhm

Unexecuted instantiation: _ZN16secure_allocatorIcE10deallocateEPcm

random.cpp:_ZN16secure_allocatorIN12_GLOBAL__N_18RNGStateEE10deallocateEPS1_m

Line

Count

Source

37

1

    {

38

1

        if (p != nullptr) {

39

1

            memory_cleanse(p, sizeof(T) * n);

40

1

        }

41

1

        LockedPoolManager::Instance().free(p);

42

1

    }

    template <typename U>

    friend bool operator==(const secure_allocator&, const secure_allocator<U>&) noexcept

    {

        return true;

    }

    template <typename U>

    friend bool operator!=(const secure_allocator&, const secure_allocator<U>&) noexcept

    {

        return false;

    }

Unexecuted instantiation: _ZneIhEbRK16secure_allocatorIhERKS0_IT_E

Unexecuted instantiation: _ZneIcEbRK16secure_allocatorIcERKS0_IT_E

};

// This is exactly like std::string, but with a custom allocator.

// TODO: Consider finding a way to make incoming RPC request.params[i] mlock()ed as well

typedef std::basic_string<char, std::char_traits<char>, secure_allocator<char> > SecureString;

template<typename T>

struct SecureUniqueDeleter {

    void operator()(T* t) noexcept {

        secure_allocator<T>().deallocate(t, 1);

    }

Unexecuted instantiation: _ZN19SecureUniqueDeleterISt5arrayIhLm32EEEclEPS1_

Unexecuted instantiation: _ZN19SecureUniqueDeleterISt5arrayIhLm96EEEclEPS1_

};

template<typename T>

using secure_unique_ptr = std::unique_ptr<T, SecureUniqueDeleter<T>>;

template<typename T, typename... Args>

secure_unique_ptr<T> make_secure_unique(Args&&... as)

{

    T* p = secure_allocator<T>().allocate(1);

    // initialize in place, and return as secure_unique_ptr

    try {

        return secure_unique_ptr<T>(new (p) T(std::forward(as)...));

    } catch (...) {

        secure_allocator<T>().deallocate(p, 1);

        throw;

    }

}

Unexecuted instantiation: _Z18make_secure_uniqueISt5arrayIhLm32EEJEESt10unique_ptrIT_19SecureUniqueDeleterIS3_EEDpOT0_

Unexecuted instantiation: _Z18make_secure_uniqueISt5arrayIhLm96EEJEESt10unique_ptrIT_19SecureUniqueDeleterIS3_EEDpOT0_

#endif // BITCOIN_SUPPORT_ALLOCATORS_SECURE_H