From 35e53b038ffab4ac61f0ed0a333b8e76c53848f6 Mon Sep 17 00:00:00 2001
From: Alex Parent <alexparent@gmail.com>
Date: Tue, 13 Dec 2016 11:19:28 -0500
Subject: [PATCH] Fixes for scan-build and make. (#69)

---
 Makefile                                      |  2 +-
 docs/Algorithm data sheets/kex_rlwe_bcns15.md |  3 +-
 src/kex_rlwe_bcns15/kex_rlwe_bcns15.c         | 41 +++++++++++--------
 3 files changed, 28 insertions(+), 18 deletions(-)

diff --git a/Makefile b/Makefile
index 94d25cf8b..0c8ebac4c 100644
--- a/Makefile
+++ b/Makefile
@@ -151,7 +151,7 @@ check: links tests
 	./test_aes
 
 clean:
-	rm -rf docs objs include
+	rm -rf docs/doxygen objs include
 	rm -f test_rand test_kex test_aes liboqs.a
 	find . -name .DS_Store -type f -delete
 
diff --git a/docs/Algorithm data sheets/kex_rlwe_bcns15.md b/docs/Algorithm data sheets/kex_rlwe_bcns15.md
index 1ae428b70..1cf67dac1 100644
--- a/docs/Algorithm data sheets/kex_rlwe_bcns15.md	
+++ b/docs/Algorithm data sheets/kex_rlwe_bcns15.md	
@@ -60,7 +60,8 @@ Implementation
 - Correctness: covered by test harness `test_kex`
 - Statistics of shared secrets: covered by test harness `test_kex`
 	- statistical distance from uniform over 100 iterations: 0.0561185025
-- Static analysis: none
+- Static analysis:
+	- `scan_build`
 
 **Runtime:**
 
diff --git a/src/kex_rlwe_bcns15/kex_rlwe_bcns15.c b/src/kex_rlwe_bcns15/kex_rlwe_bcns15.c
index 2ee71b51a..93e282646 100644
--- a/src/kex_rlwe_bcns15/kex_rlwe_bcns15.c
+++ b/src/kex_rlwe_bcns15/kex_rlwe_bcns15.c
@@ -14,6 +14,7 @@
 
 #include <oqs/kex.h>
 #include <oqs/rand.h>
+#include <oqs/common.h>
 
 #include "kex_rlwe_bcns15.h"
 #include "local.h"
@@ -54,13 +55,14 @@ OQS_KEX *OQS_KEX_rlwe_bcns15_new(OQS_RAND *rand) {
 int OQS_KEX_rlwe_bcns15_alice_0(OQS_KEX *k, void **alice_priv, uint8_t **alice_msg, size_t *alice_msg_len) {
 
 	int ret;
+	uint32_t *alice_msg_32 = NULL;
 
 	*alice_priv = NULL;
 	*alice_msg = NULL;
 
 	/* allocate public/private key pair */
-	*alice_msg = malloc(1024 * sizeof(uint32_t));
-	if (*alice_msg == NULL) {
+	alice_msg_32 = malloc(1024 * sizeof(uint32_t));
+	if (alice_msg_32 == NULL) {
 		goto err;
 	}
 	*alice_priv = malloc(1024 * sizeof(uint32_t));
@@ -69,7 +71,8 @@ int OQS_KEX_rlwe_bcns15_alice_0(OQS_KEX *k, void **alice_priv, uint8_t **alice_m
 	}
 
 	/* generate public/private key pair */
-	oqs_kex_rlwe_bcns15_generate_keypair(oqs_kex_rlwe_bcns15_a, (uint32_t *) *alice_priv, (uint32_t *) *alice_msg, k->ctx, k->rand);
+	oqs_kex_rlwe_bcns15_generate_keypair(oqs_kex_rlwe_bcns15_a, (uint32_t *) *alice_priv, alice_msg_32, k->ctx, k->rand);
+	*alice_msg = (uint8_t *) alice_msg_32;
 	*alice_msg_len = 1024 * sizeof(uint32_t);
 
 	ret = 1;
@@ -77,8 +80,8 @@ int OQS_KEX_rlwe_bcns15_alice_0(OQS_KEX *k, void **alice_priv, uint8_t **alice_m
 
 err:
 	ret = 0;
-	free(*alice_msg);
-	free(*alice_priv);
+	free(alice_msg_32);
+	OQS_MEM_secure_free(*alice_priv, 1024 * sizeof(uint32_t));
 
 cleanup:
 	return ret;
@@ -89,7 +92,9 @@ int OQS_KEX_rlwe_bcns15_bob(OQS_KEX *k, const uint8_t *alice_msg, const size_t a
 
 	int ret;
 
-	uint8_t *bob_priv = NULL;
+	uint32_t *bob_priv = NULL;
+	uint64_t *key_64 = NULL;
+
 	*bob_msg = NULL;
 	*key = NULL;
 
@@ -106,18 +111,19 @@ int OQS_KEX_rlwe_bcns15_bob(OQS_KEX *k, const uint8_t *alice_msg, const size_t a
 	if (*bob_msg == NULL) {
 		goto err;
 	}
-	*key = malloc(16 * sizeof(uint64_t));
-	if (*key == NULL) {
+	key_64 = malloc(16 * sizeof(uint64_t));
+	if (key_64 == NULL) {
 		goto err;
 	}
 
 	/* generate public/private key pair */
-	oqs_kex_rlwe_bcns15_generate_keypair(oqs_kex_rlwe_bcns15_a, (uint32_t *) bob_priv, (uint32_t *) *bob_msg, k->ctx, k->rand);
+	oqs_kex_rlwe_bcns15_generate_keypair(oqs_kex_rlwe_bcns15_a, bob_priv, (uint32_t *) *bob_msg, k->ctx, k->rand);
 
 	/* generate Bob's response */
 	uint8_t *bob_rec = *bob_msg + 1024 * sizeof(uint32_t);
-	oqs_kex_rlwe_bcns15_compute_key_bob((uint32_t *) alice_msg, (uint32_t *) bob_priv, (uint64_t *) bob_rec, (uint64_t *) *key, k->ctx, k->rand);
+	oqs_kex_rlwe_bcns15_compute_key_bob((uint32_t *) alice_msg, bob_priv, (uint64_t *) bob_rec, key_64, k->ctx, k->rand);
 	*bob_msg_len = 1024 * sizeof(uint32_t) + 16 * sizeof(uint64_t);
+	*key = (uint8_t *) key_64;
 	*key_len = 16 * sizeof(uint64_t);
 
 	ret = 1;
@@ -126,10 +132,10 @@ int OQS_KEX_rlwe_bcns15_bob(OQS_KEX *k, const uint8_t *alice_msg, const size_t a
 err:
 	ret = 0;
 	free(*bob_msg);
-	free(*key);
+	OQS_MEM_secure_free(key_64, 16 * sizeof(uint64_t));
 
 cleanup:
-	free(bob_priv);
+	OQS_MEM_secure_free(bob_priv, 1024 * sizeof(uint32_t));
 
 	return ret;
 
@@ -139,6 +145,8 @@ int OQS_KEX_rlwe_bcns15_alice_1(OQS_KEX *k, const void *alice_priv, const uint8_
 
 	int ret;
 
+	uint64_t *key_64 = NULL;
+
 	*key = NULL;
 
 	if (bob_msg_len != 1024 * sizeof(uint32_t) + 16 * sizeof(uint64_t)) {
@@ -146,14 +154,15 @@ int OQS_KEX_rlwe_bcns15_alice_1(OQS_KEX *k, const void *alice_priv, const uint8_
 	}
 
 	/* allocate session key */
-	*key = malloc(16 * sizeof(uint64_t));
-	if (*key == NULL) {
+	key_64 = malloc(16 * sizeof(uint64_t));
+	if (key_64 == NULL) {
 		goto err;
 	}
 
 	/* generate Alice's session key */
 	const uint8_t *bob_rec = bob_msg + 1024 * sizeof(uint32_t);
-	oqs_kex_rlwe_bcns15_compute_key_alice((uint32_t *)bob_msg, (uint32_t *)alice_priv, (uint64_t *) bob_rec, (uint64_t *) *key, k->ctx);
+	oqs_kex_rlwe_bcns15_compute_key_alice((uint32_t *)bob_msg, (uint32_t *)alice_priv, (uint64_t *) bob_rec, key_64, k->ctx);
+	*key = (uint8_t *) key_64;
 	*key_len = 16 * sizeof(uint64_t);
 
 	ret = 1;
@@ -161,7 +170,7 @@ int OQS_KEX_rlwe_bcns15_alice_1(OQS_KEX *k, const void *alice_priv, const uint8_
 
 err:
 	ret = 0;
-	free(*key);
+	OQS_MEM_secure_free(key_64, 16 * sizeof(uint64_t));
 
 cleanup: