Merge pull request #583 from NuSkooler/dll-boundary-fixes

Fix Windows DLL boundary issues

Author: Superhepper

tss-esapi/src/context.rs

@@ -15,7 +15,7 @@ use handle_manager::HandleManager;
 use log::{debug, error};
 use malloced::Malloced;
 use std::collections::HashMap;
-use std::ptr::null_mut;
+use std::{ffi::c_void, ptr, ptr::null_mut};
 
 /// Safe abstraction over an ESYS_CONTEXT.
 ///
@@ -454,12 +454,16 @@ impl Context {
 
     /// Private function for handling that has been allocated with
     /// C memory allocation functions in TSS.
-    fn ffi_data_to_owned<T: Copy>(data_ptr: *mut T) -> T {
-        let out = unsafe { *data_ptr };
+    fn ffi_data_to_owned<T: Copy>(data_ptr: *mut T) -> Result<T> {
+        if data_ptr.is_null() {
+            error!("Null pointer received from TSS");
+            return Err(Error::local_error(ErrorKind::WrongValueFromTpm));
+        }
+
+        let out = unsafe { ptr::read(data_ptr) };
+        unsafe { Esys_Free(data_ptr.cast::<c_void>()) };
 
-        // Free the malloced data.
-        drop(unsafe { Malloced::from_raw(data_ptr) });
-        out
+        Ok(out)
     }
 }
 

tss-esapi/src/context/general_esys_tr.rs

@@ -139,7 +139,7 @@ impl Context {
                 error!("Error in getting name: {:#010X}", ret);
             },
         )?;
-        Name::try_from(Context::ffi_data_to_owned(name_ptr))
+        Name::try_from(Context::ffi_data_to_owned(name_ptr)?)
     }
 
     /// Used to construct an esys object from the resources inside the TPM.

tss-esapi/src/context/tpm_commands/asymmetric_primitives.rs

@@ -39,7 +39,7 @@ impl Context {
                 error!("Error when performing RSA encryption: {:#010X}", ret);
             },
         )?;
-        PublicKeyRsa::try_from(Context::ffi_data_to_owned(out_data_ptr))
+        PublicKeyRsa::try_from(Context::ffi_data_to_owned(out_data_ptr)?)
     }
 
     /// Perform an asymmetric RSA decryption.
@@ -69,7 +69,7 @@ impl Context {
                 error!("Error when performing RSA decryption: {:#010X}", ret);
             },
         )?;
-        PublicKeyRsa::try_from(Context::ffi_data_to_owned(message_ptr))
+        PublicKeyRsa::try_from(Context::ffi_data_to_owned(message_ptr)?)
     }
 
     /// Generate an ephemeral key pair.
@@ -199,8 +199,8 @@ impl Context {
             },
         )?;
 
-        let z_point = Context::ffi_data_to_owned(z_point_ptr);
-        let pub_point = Context::ffi_data_to_owned(pub_point_ptr);
+        let z_point = Context::ffi_data_to_owned(z_point_ptr)?;
+        let pub_point = Context::ffi_data_to_owned(pub_point_ptr)?;
         Ok((
             EccPoint::try_from(z_point.point)?,
             EccPoint::try_from(pub_point.point)?,
@@ -335,7 +335,7 @@ impl Context {
                 error!("Error when performing ECDH ZGen: {:#010X}", ret);
             },
         )?;
-        let out_point = Context::ffi_data_to_owned(out_point_ptr);
+        let out_point = Context::ffi_data_to_owned(out_point_ptr)?;
         EccPoint::try_from(out_point.point)
     }
 

tss-esapi/src/context/tpm_commands/attestation_commands.rs

@@ -147,8 +147,8 @@ impl Context {
             },
         )?;
 
-        let certify_info = Context::ffi_data_to_owned(certify_info_ptr);
-        let signature = Context::ffi_data_to_owned(signature_ptr);
+        let certify_info = Context::ffi_data_to_owned(certify_info_ptr)?;
+        let signature = Context::ffi_data_to_owned(signature_ptr)?;
         Ok((
             Attest::try_from(AttestBuffer::try_from(certify_info)?)?,
             Signature::try_from(signature)?,
@@ -272,8 +272,8 @@ impl Context {
             },
         )?;
 
-        let certify_info = Context::ffi_data_to_owned(certify_info_ptr);
-        let signature = Context::ffi_data_to_owned(signature_ptr);
+        let certify_info = Context::ffi_data_to_owned(certify_info_ptr)?;
+        let signature = Context::ffi_data_to_owned(signature_ptr)?;
         Ok((
             Attest::try_from(AttestBuffer::try_from(certify_info)?)?,
             Signature::try_from(signature)?,
@@ -313,8 +313,8 @@ impl Context {
             },
         )?;
 
-        let quoted = Context::ffi_data_to_owned(quoted_ptr);
-        let signature = Context::ffi_data_to_owned(signature_ptr);
+        let quoted = Context::ffi_data_to_owned(quoted_ptr)?;
+        let signature = Context::ffi_data_to_owned(signature_ptr)?;
         Ok((
             Attest::try_from(AttestBuffer::try_from(quoted)?)?,
             Signature::try_from(signature)?,
@@ -426,8 +426,8 @@ impl Context {
             },
         )?;
 
-        let timeinfo = Context::ffi_data_to_owned(timeinfo_ptr);
-        let signature = Context::ffi_data_to_owned(signature_ptr);
+        let timeinfo = Context::ffi_data_to_owned(timeinfo_ptr)?;
+        let signature = Context::ffi_data_to_owned(signature_ptr)?;
         Ok((
             Attest::try_from(AttestBuffer::try_from(timeinfo)?)?,
             Signature::try_from(signature)?,

tss-esapi/src/context/tpm_commands/capability_commands.rs

@@ -69,7 +69,7 @@ impl Context {
         )?;
 
         Ok((
-            CapabilityData::try_from(Context::ffi_data_to_owned(capability_data_ptr))?,
+            CapabilityData::try_from(Context::ffi_data_to_owned(capability_data_ptr)?)?,
             YesNo::try_from(more_data)?.into(),
         ))
     }

tss-esapi/src/context/tpm_commands/context_management.rs

@@ -26,7 +26,7 @@ impl Context {
                 error!("Error in saving context: {:#010X}", ret);
             },
         )?;
-        SavedTpmContext::try_from(Context::ffi_data_to_owned(context_ptr))
+        SavedTpmContext::try_from(Context::ffi_data_to_owned(context_ptr)?)
     }
 
     /// Load a previously saved context into the TPM and return the object handle.

tss-esapi/src/context/tpm_commands/duplication_commands.rs

@@ -327,9 +327,9 @@ impl Context {
         )?;
 
         Ok((
-            Data::try_from(Context::ffi_data_to_owned(encryption_key_out_ptr))?,
-            Private::try_from(Context::ffi_data_to_owned(duplicate_ptr))?,
-            EncryptedSecret::try_from(Context::ffi_data_to_owned(out_sym_seed_ptr))?,
+            Data::try_from(Context::ffi_data_to_owned(encryption_key_out_ptr)?)?,
+            Private::try_from(Context::ffi_data_to_owned(duplicate_ptr)?)?,
+            EncryptedSecret::try_from(Context::ffi_data_to_owned(out_sym_seed_ptr)?)?,
         ))
     }
 
@@ -683,6 +683,6 @@ impl Context {
                 error!("Error when performing import: {:#010X}", ret);
             },
         )?;
-        Private::try_from(Context::ffi_data_to_owned(out_private_ptr))
+        Private::try_from(Context::ffi_data_to_owned(out_private_ptr)?)
     }
 }

tss-esapi/src/context/tpm_commands/enhanced_authorization_ea_commands.rs

@@ -64,8 +64,8 @@ impl Context {
             },
         )?;
         Ok((
-            Timeout::try_from(Context::ffi_data_to_owned(out_timeout_ptr))?,
-            AuthTicket::try_from(Context::ffi_data_to_owned(out_policy_ticket_ptr))?,
+            Timeout::try_from(Context::ffi_data_to_owned(out_timeout_ptr)?)?,
+            AuthTicket::try_from(Context::ffi_data_to_owned(out_policy_ticket_ptr)?)?,
         ))
     }
 
@@ -106,8 +106,8 @@ impl Context {
             },
         )?;
         Ok((
-            Timeout::try_from(Context::ffi_data_to_owned(out_timeout_ptr))?,
-            AuthTicket::try_from(Context::ffi_data_to_owned(out_policy_ticket_ptr))?,
+            Timeout::try_from(Context::ffi_data_to_owned(out_timeout_ptr)?)?,
+            AuthTicket::try_from(Context::ffi_data_to_owned(out_policy_ticket_ptr)?)?,
         ))
     }
 
@@ -533,7 +533,7 @@ impl Context {
             },
         )?;
 
-        Digest::try_from(Context::ffi_data_to_owned(policy_digest_ptr))
+        Digest::try_from(Context::ffi_data_to_owned(policy_digest_ptr)?)
     }
 
     /// Cause conditional gating of a policy based on NV written state.

tss-esapi/src/context/tpm_commands/hierarchy_commands.rs

@@ -70,10 +70,10 @@ impl Context {
                 error!("Error in creating primary key: {:#010X}", ret);
             },
         )?;
-        let out_public_owned = Context::ffi_data_to_owned(out_public_ptr);
-        let creation_data_owned = Context::ffi_data_to_owned(creation_data_ptr);
-        let creation_hash_owned = Context::ffi_data_to_owned(creation_hash_ptr);
-        let creation_ticket_owned = Context::ffi_data_to_owned(creation_ticket_ptr);
+        let out_public_owned = Context::ffi_data_to_owned(out_public_ptr)?;
+        let creation_data_owned = Context::ffi_data_to_owned(creation_data_ptr)?;
+        let creation_hash_owned = Context::ffi_data_to_owned(creation_hash_ptr)?;
+        let creation_ticket_owned = Context::ffi_data_to_owned(creation_ticket_ptr)?;
         let primary_key_handle = KeyHandle::from(object_handle);
         self.handle_manager
             .add_handle(primary_key_handle.into(), HandleDropAction::Flush)?;

tss-esapi/src/context/tpm_commands/integrity_collection_pcr.rs

@@ -175,8 +175,8 @@ impl Context {
 
         Ok((
             pcr_update_counter,
-            PcrSelectionList::try_from(Context::ffi_data_to_owned(pcr_selection_out_ptr))?,
-            DigestList::try_from(Context::ffi_data_to_owned(pcr_values_ptr))?,
+            PcrSelectionList::try_from(Context::ffi_data_to_owned(pcr_selection_out_ptr)?)?,
+            DigestList::try_from(Context::ffi_data_to_owned(pcr_values_ptr)?)?,
         ))
     }