Avoid circular dependency using AlignedAllocate (GH #885)

Filelist.txt

@@ -11,6 +11,8 @@ algebra.cpp
 algebra.h
 algparam.cpp
 algparam.h
+allocate.cpp
+allocate.h
 arc4.cpp
 arc4.h
 ariatab.cpp

allocate.cpp

@@ -0,0 +1,99 @@
+// allocate.cpp - written and placed in the public domain by Jeffrey Walton
+
+// The functions in allocate.h and allocate.cpp were originally in misc.h
+// and misc.cpp. They were extracted in September 2019 to sidestep a circular
+// dependency with misc.h and secblock.h.
+
+#include "pch.h"
+#include "config.h"
+
+#ifndef CRYPTOPP_IMPORTS
+
+#include "allocate.h"
+#include "stdcpp.h"
+#include "misc.h"
+#include "trap.h"
+
+// for memalign
+#if defined(CRYPTOPP_MEMALIGN_AVAILABLE) || defined(CRYPTOPP_MM_MALLOC_AVAILABLE) || defined(QNX)
+# include <malloc.h>
+#endif
+// for posix_memalign
+#if defined(CRYPTOPP_POSIX_MEMALIGN_AVAILABLE)
+# include <stdlib.h>
+#endif
+
+NAMESPACE_BEGIN(CryptoPP)
+
+void CallNewHandler()
+{
+	using std::new_handler;
+	using std::set_new_handler;
+
+	new_handler newHandler = set_new_handler(NULLPTR);
+	if (newHandler)
+		set_new_handler(newHandler);
+
+	if (newHandler)
+		newHandler();
+	else
+		throw std::bad_alloc();
+}
+
+void * AlignedAllocate(size_t size)
+{
+	byte *p;
+#if defined(CRYPTOPP_MM_MALLOC_AVAILABLE)
+	while ((p = (byte *)_mm_malloc(size, 16)) == NULLPTR)
+#elif defined(CRYPTOPP_MEMALIGN_AVAILABLE)
+	while ((p = (byte *)memalign(16, size)) == NULLPTR)
+#elif defined(CRYPTOPP_MALLOC_ALIGNMENT_IS_16)
+	while ((p = (byte *)malloc(size)) == NULLPTR)
+#elif defined(CRYPTOPP_POSIX_MEMALIGN_AVAILABLE)
+	while (posix_memalign(reinterpret_cast<void**>(&p), 16, size) != 0)
+#else
+	while ((p = (byte *)malloc(size + 16)) == NULLPTR)
+#endif
+		CallNewHandler();
+
+#ifdef CRYPTOPP_NO_ALIGNED_ALLOC
+	size_t adjustment = 16-((size_t)p%16);
+	CRYPTOPP_ASSERT(adjustment > 0);
+	p += adjustment;
+	p[-1] = (byte)adjustment;
+#endif
+
+	// If this assert fires then there are problems that need
+	// to be fixed. Please open a bug report.
+	CRYPTOPP_ASSERT(IsAlignedOn(p, 16));
+	return p;
+}
+
+void AlignedDeallocate(void *p)
+{
+#ifdef CRYPTOPP_MM_MALLOC_AVAILABLE
+	_mm_free(p);
+#elif defined(CRYPTOPP_NO_ALIGNED_ALLOC)
+	p = (byte *)p - ((byte *)p)[-1];
+	free(p);
+#else
+	free(p);
+#endif
+}
+
+void * UnalignedAllocate(size_t size)
+{
+	void *p;
+	while ((p = malloc(size)) == NULLPTR)
+		CallNewHandler();
+	return p;
+}
+
+void UnalignedDeallocate(void *p)
+{
+	free(p);
+}
+
+NAMESPACE_END
+
+#endif  // CRYPTOPP_IMPORTS

allocate.h

@@ -0,0 +1,74 @@
+// allocate.h - written and placed in the public domain by Jeffrey Walton
+
+// The functions in allocate.h and allocate.cpp were originally in misc.h
+// and misc.cpp. They were extracted in September 2019 to sidestep a circular
+// dependency with misc.h and secblock.h.
+
+/// \file allocate.h
+/// \brief Functions for allocating aligned buffers
+
+#ifndef CRYPTOPP_ALLOCATE_H
+#define CRYPTOPP_ALLOCATE_H
+
+#include "config.h"
+#include "cryptlib.h"
+
+NAMESPACE_BEGIN(CryptoPP)
+
+/// \brief Attempts to reclaim unused memory
+/// \throws bad_alloc
+/// \details In the normal course of running a program, a request for memory
+///  normally succeeds. If a call to AlignedAllocate or UnalignedAllocate fails,
+///  then CallNewHandler is called in n effort to recover. Internally,
+///  CallNewHandler calls set_new_handler(nullptr) in an effort to free memory.
+///  There is no guarantee CallNewHandler will be able to obtain more memory so
+///  an allocation succeeds. If the call to set_new_handler fails, then CallNewHandler
+///  throws a bad_alloc exception.
+/// \throws bad_alloc on failure
+/// \since Crypto++ 5.0
+/// \sa AlignedAllocate, AlignedDeallocate, UnalignedAllocate, UnalignedDeallocate
+CRYPTOPP_DLL void CRYPTOPP_API CallNewHandler();
+
+/// \brief Allocates a buffer on 16-byte boundary
+/// \param size the size of the buffer
+/// \details AlignedAllocate is primarily used when the data will be
+///  proccessed by SSE, NEON, ARMv8 or PowerPC instructions. The assembly
+///  language routines rely on the alignment. If the alignment is not
+///  respected, then a SIGBUS could be generated on Unix and Linux, and an
+///  EXCEPTION_DATATYPE_MISALIGNMENT could be generated on Windows.
+/// \details Formerly, AlignedAllocate and AlignedDeallocate were only
+///  available on certain platforms when CRYTPOPP_DISABLE_ASM was not in
+///  effect. However, Android and iOS debug simulator builds got into a
+///  state where the aligned allocator was not available and caused link
+///  failures.
+/// \since AlignedAllocate for SIMD since Crypto++ 1.0, AlignedAllocate
+///  for all builds since Crypto++ 8.1
+/// \sa AlignedDeallocate, UnalignedAllocate, UnalignedDeallocate, CallNewHandler,
+///  <A HREF="http://github.com/weidai11/cryptopp/issues/779">Issue 779</A>
+CRYPTOPP_DLL void* CRYPTOPP_API AlignedAllocate(size_t size);
+
+/// \brief Frees a buffer allocated with AlignedAllocate
+/// \param ptr the buffer to free
+/// \since AlignedDeallocate for SIMD since Crypto++ 1.0, AlignedAllocate
+///  for all builds since Crypto++ 8.1
+/// \sa AlignedAllocate, UnalignedAllocate, UnalignedDeallocate, CallNewHandler,
+///  <A HREF="http://github.com/weidai11/cryptopp/issues/779">Issue 779</A>
+CRYPTOPP_DLL void CRYPTOPP_API AlignedDeallocate(void *ptr);
+
+/// \brief Allocates a buffer
+/// \param size the size of the buffer
+/// \since Crypto++ 1.0
+/// \sa AlignedAllocate, AlignedDeallocate, UnalignedDeallocate, CallNewHandler,
+///  <A HREF="http://github.com/weidai11/cryptopp/issues/779">Issue 779</A>
+CRYPTOPP_DLL void * CRYPTOPP_API UnalignedAllocate(size_t size);
+
+/// \brief Frees a buffer allocated with UnalignedAllocate
+/// \param ptr the buffer to free
+/// \since Crypto++ 1.0
+/// \sa AlignedAllocate, AlignedDeallocate, UnalignedAllocate, CallNewHandler,
+///  <A HREF="http://github.com/weidai11/cryptopp/issues/779">Issue 779</A>
+CRYPTOPP_DLL void CRYPTOPP_API UnalignedDeallocate(void *ptr);
+
+NAMESPACE_END
+
+#endif  // CRYPTOPP_ALLOCATE_H

asn.h

@@ -79,8 +79,6 @@ public:
 	UnknownOID(const char *err) : BERDecodeErr(err) {}
 };
 
-// unsigned int DERLengthEncode(unsigned int length, byte *output=0);
-
 /// \brief DER encode a length
 /// \param bt BufferedTransformation object for writing
 /// \param length the size to encode

config_dll.h

@@ -21,7 +21,7 @@
 
 #if defined(CRYPTOPP_WIN32_AVAILABLE)
 
-#ifdef CRYPTOPP_EXPORTS
+#if defined(CRYPTOPP_EXPORTS)
 #  define CRYPTOPP_IS_DLL
 #  define CRYPTOPP_DLL __declspec(dllexport)
 #elif defined(CRYPTOPP_IMPORTS)

cryptdll.vcxproj

@@ -187,6 +187,7 @@
     </ClCompile>
     <ClCompile Include="algebra.cpp" />
     <ClCompile Include="algparam.cpp" />
+    <ClCompile Include="allocate.cpp" />
     <ClCompile Include="asn.cpp" />
     <ClCompile Include="authenc.cpp" />
     <ClCompile Include="basecode.cpp" />
@@ -247,6 +248,7 @@
     <ClInclude Include="aes.h" />
     <ClInclude Include="algebra.h" />
     <ClInclude Include="algparam.h" />
+    <ClInclude Include="allocate.h" />
     <ClInclude Include="argnames.h" />
     <ClInclude Include="asn.h" />
     <ClInclude Include="authenc.h" />

cryptdll.vcxproj.filters

@@ -17,6 +17,9 @@
     <ClCompile Include="algparam.cpp">
       <Filter>Source Files</Filter>
     </ClCompile>
+    <ClCompile Include="allocate.cpp">
+      <Filter>Source Files</Filter>
+    </ClCompile>
     <ClCompile Include="asn.cpp">
       <Filter>Source Files</Filter>
     </ClCompile>
@@ -205,6 +208,9 @@
     <ClInclude Include="algparam.h">
       <Filter>Header Files</Filter>
     </ClInclude>
+    <ClInclude Include="allocate.h">
+      <Filter>Header Files</Filter>
+    </ClInclude>
     <ClInclude Include="argnames.h">
       <Filter>Header Files</Filter>
     </ClInclude>

cryptlib.vcxproj

@@ -171,6 +171,7 @@
     <ClCompile Include="adler32.cpp" />
     <ClCompile Include="algebra.cpp" />
     <ClCompile Include="algparam.cpp" />
+    <ClCompile Include="allocate.cpp" />
     <ClCompile Include="arc4.cpp" />
     <ClCompile Include="aria.cpp" />
     <ClCompile Include="aria_simd.cpp" />
@@ -401,6 +402,7 @@
     <ClInclude Include="aes.h" />
     <ClInclude Include="algebra.h" />
     <ClInclude Include="algparam.h" />
+    <ClInclude Include="allocate.h" />
     <ClInclude Include="arc4.h" />
     <ClInclude Include="aria.h" />
     <ClInclude Include="argnames.h" />

cryptlib.vcxproj.filters

@@ -26,6 +26,9 @@
     <ClCompile Include="algparam.cpp">
       <Filter>Source Files</Filter>
     </ClCompile>
+    <ClCompile Include="allocate.cpp">
+      <Filter>Source Files</Filter>
+    </ClCompile>
     <ClCompile Include="arc4.cpp">
       <Filter>Source Files</Filter>
     </ClCompile>
@@ -558,6 +561,9 @@
     <ClInclude Include="algparam.h">
       <Filter>Header Files</Filter>
     </ClInclude>
+    <ClInclude Include="allocate.h">
+      <Filter>Header Files</Filter>
+    </ClInclude>
     <ClInclude Include="arc4.h">
       <Filter>Header Files</Filter>
     </ClInclude>

misc.cpp

@@ -13,20 +13,11 @@
 #ifndef CRYPTOPP_IMPORTS
 
 #include "misc.h"
-#include "words.h"
+#include "trap.h"
 #include "words.h"
 #include "stdcpp.h"
 #include "integer.h"
 
-// for memalign
-#if defined(CRYPTOPP_MEMALIGN_AVAILABLE) || defined(CRYPTOPP_MM_MALLOC_AVAILABLE) || defined(QNX)
-# include <malloc.h>
-#endif
-// for posix_memalign
-#if defined(CRYPTOPP_POSIX_MEMALIGN_AVAILABLE)
-# include <stdlib.h>
-#endif
-
 NAMESPACE_BEGIN(CryptoPP)
 
 void xorbuf(byte *buf, const byte *mask, size_t count)
@@ -265,75 +256,6 @@ std::wstring StringWiden(const char *str, bool throwOnError)
 	return result;
 }
 
-void CallNewHandler()
-{
-	using std::new_handler;
-	using std::set_new_handler;
-
-	new_handler newHandler = set_new_handler(NULLPTR);
-	if (newHandler)
-		set_new_handler(newHandler);
-
-	if (newHandler)
-		newHandler();
-	else
-		throw std::bad_alloc();
-}
-
-void * AlignedAllocate(size_t size)
-{
-	byte *p;
-#if defined(CRYPTOPP_MM_MALLOC_AVAILABLE)
-	while ((p = (byte *)_mm_malloc(size, 16)) == NULLPTR)
-#elif defined(CRYPTOPP_MEMALIGN_AVAILABLE)
-	while ((p = (byte *)memalign(16, size)) == NULLPTR)
-#elif defined(CRYPTOPP_MALLOC_ALIGNMENT_IS_16)
-	while ((p = (byte *)malloc(size)) == NULLPTR)
-#elif defined(CRYPTOPP_POSIX_MEMALIGN_AVAILABLE)
-	while (posix_memalign(reinterpret_cast<void**>(&p), 16, size) != 0)
-#else
-	while ((p = (byte *)malloc(size + 16)) == NULLPTR)
-#endif
-		CallNewHandler();
-
-#ifdef CRYPTOPP_NO_ALIGNED_ALLOC
-	size_t adjustment = 16-((size_t)p%16);
-	CRYPTOPP_ASSERT(adjustment > 0);
-	p += adjustment;
-	p[-1] = (byte)adjustment;
-#endif
-
-	// If this assert fires then there are problems that need
-	// to be fixed. Please open a bug report.
-	CRYPTOPP_ASSERT(IsAlignedOn(p, 16));
-	return p;
-}
-
-void AlignedDeallocate(void *p)
-{
-#ifdef CRYPTOPP_MM_MALLOC_AVAILABLE
-	_mm_free(p);
-#elif defined(CRYPTOPP_NO_ALIGNED_ALLOC)
-	p = (byte *)p - ((byte *)p)[-1];
-	free(p);
-#else
-	free(p);
-#endif
-}
-
-void * UnalignedAllocate(size_t size)
-{
-	void *p;
-	while ((p = malloc(size)) == NULLPTR)
-		CallNewHandler();
-	return p;
-}
-
-void UnalignedDeallocate(void *p)
-{
-	free(p);
-}
-
 NAMESPACE_END
 
 #endif

misc.h

@@ -6,7 +6,10 @@
 #ifndef CRYPTOPP_MISC_H
 #define CRYPTOPP_MISC_H
 
-#include "config.h"
+#include "cryptlib.h"
+#include "smartptr.h"
+#include "stdcpp.h"
+#include "trap.h"
 
 #if !defined(CRYPTOPP_DOXYGEN_PROCESSING)
 
@@ -26,10 +29,6 @@
 # pragma GCC diagnostic ignored "-Wunused-function"
 #endif
 
-#include "cryptlib.h"
-#include "stdcpp.h"
-#include "smartptr.h"
-
 #ifdef _MSC_VER
 	#if _MSC_VER >= 1400
 		// VC2005 workaround: disable declarations that conflict with winnt.h
@@ -1248,17 +1247,6 @@ inline CipherDir GetCipherDir(const T &obj)
 	return obj.IsForwardTransformation() ? ENCRYPTION : DECRYPTION;
 }
 
-/// \brief Attempts to reclaim unused memory
-/// \throws bad_alloc
-/// \details In the normal course of running a program, a request for memory normally succeeds. If a
-///   call to AlignedAllocate or UnalignedAllocate fails, then CallNewHandler is called in
-///   an effort to recover. Internally, CallNewHandler calls set_new_handler(NULLPTR) in an effort
-///   to free memory. There is no guarantee CallNewHandler will be able to procure more memory so
-///   an allocation succeeds. If the call to set_new_handler fails, then CallNewHandler throws
-///   a bad_alloc exception.
-/// \sa AlignedAllocate, AlignedDeallocate, UnalignedAllocate, UnalignedDeallocate
-CRYPTOPP_DLL void CRYPTOPP_API CallNewHandler();
-
 /// \brief Performs an addition with carry on a block of bytes
 /// \param inout the byte block
 /// \param size the size of the block, in bytes
@@ -1497,46 +1485,6 @@ std::string StringNarrow(const wchar_t *str, bool throwOnError = true);
 ///   then a 0x21 error is returned on Windows which eventually results in an InvalidArgument() exception.
 std::wstring StringWiden(const char *str, bool throwOnError = true);
 
-/// \brief Allocates a buffer on 16-byte boundary
-/// \param size the size of the buffer
-/// \details AlignedAllocate is primarily used when the data will be
-///   proccessed by SSE, NEON, ARMv8 or PowerPC instructions. The assembly
-///   language routines rely on the alignment. If the alignment is not
-///   respected, then a SIGBUS could be generated on Unix and Linux, and an
-///   EXCEPTION_DATATYPE_MISALIGNMENT could be generated on Windows.
-/// \details Formerly, AlignedAllocate and AlignedDeallocate were only
-///   available on certain platforms when CRYTPOPP_DISABLE_ASM was not in
-///   effect. However, Android and iOS debug simulator builds got into a
-///   state where the aligned allocator was not available and caused link
-///   failures.
-/// \since AlignedAllocate for SIMD since Crypto++ 1.0, AlignedAllocate
-///   for all builds since Crypto++ 8.1
-/// \sa AlignedDeallocate, UnalignedAllocate, UnalignedDeallocate, CallNewHandler,
-///   <A HREF="http://github.com/weidai11/cryptopp/issues/779">Issue 779</A>
-CRYPTOPP_DLL void* CRYPTOPP_API AlignedAllocate(size_t size);
-
-/// \brief Frees a buffer allocated with AlignedAllocate
-/// \param ptr the buffer to free
-/// \since AlignedDeallocate for SIMD since Crypto++ 1.0, AlignedAllocate
-///   for all builds since Crypto++ 8.1
-/// \sa AlignedAllocate, UnalignedAllocate, UnalignedDeallocate, CallNewHandler,
-///   <A HREF="http://github.com/weidai11/cryptopp/issues/779">Issue 779</A>
-CRYPTOPP_DLL void CRYPTOPP_API AlignedDeallocate(void *ptr);
-
-/// \brief Allocates a buffer
-/// \param size the size of the buffer
-/// \since Crypto++ 1.0
-/// \sa AlignedAllocate, AlignedDeallocate, UnalignedDeallocate, CallNewHandler,
-///   <A HREF="http://github.com/weidai11/cryptopp/issues/779">Issue 779</A>
-CRYPTOPP_DLL void * CRYPTOPP_API UnalignedAllocate(size_t size);
-
-/// \brief Frees a buffer allocated with UnalignedAllocate
-/// \param ptr the buffer to free
-/// \since Crypto++ 1.0
-/// \sa AlignedAllocate, AlignedDeallocate, UnalignedAllocate, CallNewHandler,
-///   <A HREF="http://github.com/weidai11/cryptopp/issues/779">Issue 779</A>
-CRYPTOPP_DLL void CRYPTOPP_API UnalignedDeallocate(void *ptr);
-
 // ************** rotate functions ***************
 
 /// \brief Performs a left rotate

secblock.h

@@ -7,8 +7,9 @@
 #define CRYPTOPP_SECBLOCK_H
 
 #include "config.h"
-#include "stdcpp.h"
+#include "allocate.h"
 #include "misc.h"
+#include "stdcpp.h"
 
 #if CRYPTOPP_MSC_VERSION
 # pragma warning(push)