EAP TLS - mbed-tls

22 Feb 2024


      Hi,
I am working on an issue related to memory leak in MBedTLS. We have
integrated MBedTLS code for below 3rd party HostAPD code integration .
https://github.com/prplfoundation/hostap [Hostapd]
Please refer to the Hostapd peer code implementation as provided in
the link below:
https://github.com/prplfoundation/hostap/blob/master/eap_example/eap_example...
https://github.com/prplfoundation/hostap/blob/master/eap_example/eap_example...
The main function code snippet is provided below:
https://github.com/prplfoundation/hostap/blob/master/eap_example/eap_example...
if (eap_example_peer_init() < 0 ||
    eap_example_server_init() < 0)
return -1;
do {
printf("---[ server ]--------------------------------\n");
res_s = eap_example_server_step();
printf("---[ peer ]----------------------------------\n");
res_p = eap_example_peer_step();
} while (res_s || res_p);
Since we are implementing code for peers hence we have removed the
server step. Now we need to keep monitoring for new connections /
failed connections and act accordingly we have modified the code to
something like below -
if (eap_example_peer_init() < 0 ||
    eap_example_server_init() < 0)
return -1;
do {
               res_p = eap_example_peer_step();
                if (eap_ctx.eapNoResp || eap_ctx.eapFail) {
                        eap_client_peer_deinit();
                        eap_client_peer_init();
                }
} while (1);
We have modified the loop such that it will keep iterating for new
connections and in case of failure, re-initialization is required. Is
my understanding correct? The issue I am facing is that the client
peer deinit method is not releasing all memory allocated during
eap_example_peer_step() function ( I understand while processing the
EAP TLS server request). The deinit is purely implemented to
deallocate memory initially allocated for a new connection using TLS?
void eap_client_peer_deinit(void)
{
        eap_peer_sm_deinit(eap_ctx.eap);
        eap_peer_unregister_methods();
        wpabuf_free(eap_ctx.eapReqData);
        os_free(eap_ctx.eap_config.identity);
        os_free(eap_ctx.eap_config.password);
        os_free(eap_ctx.eap_config.cert.ca_cert);
        os_free(eap_ctx.eap_config.cert.client_cert);
        os_free(eap_ctx.eap_config.cert.private_key);
}
where
void eap_peer_sm_deinit(struct eap_sm *sm)
{
if (sm == NULL)
return;
eap_deinit_prev_method(sm, "deinit");
eap_sm_abort(sm);
if (sm->ssl_ctx2)
tls_deinit(sm->ssl_ctx2);
tls_deinit(sm->ssl_ctx);
eap_peer_erp_free_keys(sm);
os_free(sm);
}
Can you please let me know whether we are deallocating memory correctly?
Thanks in advance.
Regards,
Prakash