checkpoint - extra debugs and such removed

Author: rapier1

cipher-ctr-mt.c

@@ -36,7 +36,6 @@
 #include "log.h"
 #include <unistd.h>
 #include "uthash.h"
-#include "misc.h"
 
 /* compatibility with old or broken OpenSSL versions */
 #include "openbsd-compat/openssl-compat.h"
@@ -287,11 +286,6 @@ stop_and_join_pregen_threads(struct ssh_aes_ctr_ctx_mt *c)
 static void *
 thread_loop(void *x)
 {
-	struct statm_t result;
-	read_mem_stats(&result, 1);
-	debug_f("********* LOOP START memory usage is now virt: %lu, res: %lu, share: %lu",
-		result.size*4, result.resident*4, result.share*4);
-	
 	EVP_CIPHER_CTX *aesni_ctx;
 	struct ssh_aes_ctr_ctx_mt *c = x;
 	struct kq *q;
@@ -309,9 +303,6 @@ thread_loop(void *x)
 
 	/* create the context for this thread */
 	aesni_ctx = EVP_CIPHER_CTX_new();
-	read_mem_stats(&result, 1);
-	debug_f("********* LOOP new context memory usage is now virt: %lu, res: %lu, share: %lu",
-		result.size*4, result.resident*4, result.share*4);
 
 	/* keep track of the pointer for the evp in this struct
 	 * so we can free it later. So we place it in a hash indexed on the
@@ -322,10 +313,7 @@ thread_loop(void *x)
 	ptr->tid = pthread_self(); /* index for hash */
 	ptr->pointer = aesni_ctx;
 	HASH_ADD_INT(evp_ptrs, tid, ptr);
-	read_mem_stats(&result, 1);
-	debug_f("********* LOOP track pointer memory usage is now virt: %lu, res: %lu, share: %lu",
-		result.size*4, result.resident*4, result.share*4);
-	
+
 	/* initialize the cipher ctx with the key provided
 	 * determine which cipher to use based on the key size */
 	if (c->keylen == 256)
@@ -338,9 +326,6 @@ thread_loop(void *x)
 		logit("Invalid key length of %d in AES CTR MT. Exiting", c->keylen);
 		exit(1);
 	}
-	read_mem_stats(&result, 1);
-	debug_f("********* LOOP init ctx memory usage is now virt: %lu, res: %lu, share: %lu",
-		result.size*4, result.resident*4, result.share*4);
 
 	/*
 	 * Handle the special case of startup, one thread must fill
@@ -367,9 +352,6 @@ thread_loop(void *x)
 			pthread_cond_broadcast(&q->cond);
 		}
 		pthread_mutex_unlock(&q->lock);
-		read_mem_stats(&result, 1);
-		debug_f("********* LOOP first thread memory usage is now virt: %lu, res: %lu, share: %lu",
-			result.size*4, result.resident*4, result.share*4);
 	}
 
 	/*
@@ -418,9 +400,6 @@ thread_loop(void *x)
 
 		/* see coresponding block above for useful comments */
 		EVP_EncryptUpdate(aesni_ctx, q->keys[0], &outlen, mynull, KQLEN * AES_BLOCK_SIZE);
-		read_mem_stats(&result, 1);
-		//		debug_f("Size is %d byte", KQLEN*AES_BLOCK_SIZE);
-		//		debug_f("********* qidx: %d LOOP fill thread memory usage is now virt: %lu, res: %lu, share: %lu", qidx, result.size*4, result.resident*4, result.share*4);
 
 		/* Re-lock, mark full and signal consumer */
 		pthread_mutex_lock(&q->lock);
@@ -539,14 +518,9 @@ ssh_aes_ctr_init(EVP_CIPHER_CTX *ctx, const u_char *key, const u_char *iv,
     int enc)
 {
 	struct ssh_aes_ctr_ctx_mt *c;
-	struct statm_t result;
 	int i;
-	read_mem_stats(&result, 1);
-	debug_f("********* START INIT memory usage is now virt: %lu, res: %lu, share: %lu",
-		result.size*4, result.resident*4, result.share*4);
-	
+
 	char *aes_threads = getenv("SSH_CIPHER_THREADS");
-	debug_f("!!!!!!!!!!!!!!!!! threads = %s", aes_threads);
         if (aes_threads != NULL && strlen(aes_threads) != 0)
 		cipher_threads = atoi(aes_threads);
 	else
@@ -567,10 +541,6 @@ ssh_aes_ctr_init(EVP_CIPHER_CTX *ctx, const u_char *key, const u_char *iv,
 
 	/* set up the initial state of c (our cipher stream struct) */
  	if ((c = EVP_CIPHER_CTX_get_app_data(ctx)) == NULL) {
-		read_mem_stats(&result, 1);
-		debug_f("********* start get app data memory usage is now virt: %lu, res: %lu, share: %lu",
-			result.size*4, result.resident*4, result.share*4);
-
 		c = xmalloc(sizeof(*c));
 		pthread_rwlock_init(&c->tid_lock, NULL);
 #ifdef __APPLE__
@@ -588,18 +558,12 @@ ssh_aes_ctr_init(EVP_CIPHER_CTX *ctx, const u_char *key, const u_char *iv,
 
 		/* attach our struct to the context */
 		EVP_CIPHER_CTX_set_app_data(ctx, c);
-		read_mem_stats(&result, 1);
-		debug_f("********* get app data memory usage is now virt: %lu, res: %lu, share: %lu",
-			result.size*4, result.resident*4, result.share*4);
 	}
 
 	/* we are initializing but the current structure already
 	   has an IV and key so we want to kill the existing key data
 	   and start over. This is important when we need to rekey the data stream */
 	if (c->state == (HAVE_KEY | HAVE_IV)) {
-		read_mem_stats(&result, 1);
-		debug_f("********* start c->state memory usage is now virt: %lu, res: %lu, share: %lu",
-			result.size*4, result.resident*4, result.share*4);
 		/* tell the pregen threads to exit */
 		stop_and_join_pregen_threads(c);
 
@@ -610,46 +574,25 @@ ssh_aes_ctr_init(EVP_CIPHER_CTX *ctx, const u_char *key, const u_char *iv,
 
 		/* Start over getting key & iv */
 		c->state = HAVE_NONE;
-		read_mem_stats(&result, 1);
-		debug_f("********* c->state memory usage is now virt: %lu, res: %lu, share: %lu",
-			result.size*4, result.resident*4, result.share*4);
 	}
 
 	/* set the initial key for this key stream queue */
 	if (key != NULL) {
-		read_mem_stats(&result, 1);
-		debug_f("********* start key != NULL memory usage is now virt: %lu, res: %lu, share: %lu",
-			result.size*4, result.resident*4, result.share*4);
 		AES_set_encrypt_key(key, EVP_CIPHER_CTX_key_length(ctx) * 8,
 		   &c->aes_key);
 		c->orig_key = key;
 		c->keylen = EVP_CIPHER_CTX_key_length(ctx) * 8;
 		c->state |= HAVE_KEY;
-		read_mem_stats(&result, 1);
-		debug_f("********* key != NULL memory usage is now virt: %lu, res: %lu, share: %lu",
-			result.size*4, result.resident*4, result.share*4);
 	}
 
 	/* set the IV */
 	if (iv != NULL) {
 		/* init the counter this is just a 16byte uchar */
-		read_mem_stats(&result, 1);
-		debug_f("********* start iv != NULL memory usage is now virt: %lu, res: %lu, share: %lu",
-			result.size*4, result.resident*4, result.share*4);
 		memcpy(c->aes_counter, iv, AES_BLOCK_SIZE);
 		c->state |= HAVE_IV;
-		read_mem_stats(&result, 1);
-		debug_f("********* iv != NULL memory usage is now virt: %lu, res: %lu, share: %lu",
-			result.size*4, result.resident*4, result.share*4);
-
 	}
 
 	if (c->state == (HAVE_KEY | HAVE_IV)) {
-		debug_f("start thread init");
-		read_mem_stats(&result, 1);
-		debug_f("********* start thread init memory usage is now virt: %lu, res: %lu, share: %lu",
-			result.size*4, result.resident*4, result.share*4);
-
 		/* Clear queues */
 		/* set the first key in the key queue to the current counter */
 		memcpy(c->q[0].ctr, c->aes_counter, AES_BLOCK_SIZE);
@@ -666,19 +609,14 @@ ssh_aes_ctr_init(EVP_CIPHER_CTX *ctx, const u_char *key, const u_char *iv,
 		c->ridx = 0;
 		c->struct_id = global_struct_id++;
 
-		
+
 		/* Start threads */
 #define STACK_SIZE (1024 * 1024)
 		pthread_attr_t attr;
 		pthread_attr_init(&attr);
 		pthread_attr_setstacksize(&attr, STACK_SIZE);
 		for (i = 0; i < cipher_threads; i++) {
 			pthread_rwlock_wrlock(&c->tid_lock);
-			read_mem_stats(&result, 1);
-			debug_f("********* %d: pre thread create memory usage is now virt: %lu, res: %lu, share: %lu",
-				i, result.size*4, result.resident*4, result.share*4);
-			debug("size of c is %zu", sizeof(*c));
-			debug("size of ctx is %zu", sizeof(ctx));
 			if (pthread_create(&c->tid[i], &attr, thread_loop, c) != 0)
 				fatal ("AES-CTR MT Could not create thread in %s", __FUNCTION__);
                                 /*should die here */
@@ -687,26 +625,14 @@ ssh_aes_ctr_init(EVP_CIPHER_CTX *ctx, const u_char *key, const u_char *iv,
 				debug ("AES-CTR MT spawned a thread with id %lu in %s (%lu, %d)",
 				       c->tid[i], __FUNCTION__, c->struct_id, c->id[i]);
 			}
-			//sleep (5);
-			read_mem_stats(&result, 1);
-			debug_f("********* %d: post thread create memory usage is now virt: %lu, res: %lu, share: %lu",
-				i, result.size*4, result.resident*4, result.share*4);
 			pthread_rwlock_unlock(&c->tid_lock);
 		}
 		pthread_mutex_lock(&c->q[0].lock);
 		// wait for all of the threads to be initialized
 		while (c->q[0].qstate == KQINIT)
 			pthread_cond_wait(&c->q[0].cond, &c->q[0].lock);
 		pthread_mutex_unlock(&c->q[0].lock);
-		read_mem_stats(&result, 1);
-		debug_f("********* end thread init memory usage is now virt: %lu, res: %lu, share: %lu",
-		result.size*4, result.resident*4, result.share*4);
-		
-		debug_f("end thread init");
 	}
-	read_mem_stats(&result, 1);
-	debug_f("********* END INIT memory usage is now virt: %lu, res: %lu, share: %lu",
-		result.size*4, result.resident*4, result.share*4);
 	return 1;
 }
 

cipher.c

@@ -276,8 +276,6 @@ cipher_init(struct sshcipher_ctx **ccp, const struct sshcipher *cipher,
 	const EVP_CIPHER *type;
 	int klen;
 #endif
-#include "misc.h"
-	struct statm_t result;
 
 	*ccp = NULL;
 	if ((cc = calloc(sizeof(*cc), 1)) == NULL)
@@ -323,12 +321,6 @@ cipher_init(struct sshcipher_ctx **ccp, const struct sshcipher *cipher,
 	 * start the threaded cipher. If OSSL supports providers (OSSL 3.0+) then
 	 * we load our hpnssh provider. If it doesn't (OSSL < 1.1) then we use the
 	 * _meth_new process found in cipher-ctr-mt.c */
-	if (post_auth) {
-	  read_mem_stats(&result, post_auth);
-
-	  debug_f("********* pre provider load memory usage is now virt: %lu, res: %lu, share: %lu",
-		  result.size*4, result.resident*4, result.share*4);
-	}
 	if (strstr(cc->cipher->name, "ctr") && post_auth) {
 #if OPENSSL_VERSION_NUMBER >= 0x30000000UL
 		/* this version of openssl uses providers */
@@ -342,11 +334,6 @@ cipher_init(struct sshcipher_ctx **ccp, const struct sshcipher *cipher,
 		}
 		aes_mt_provider = OSSL_PROVIDER_load(aes_lib, "hpnssh");
 
-		read_mem_stats(&result, post_auth);
-
-		debug_f("********* post provider load memory usage is now virt: %lu, res: %lu, share: %lu",
-			result.size*4, result.resident*4, result.share*4);
-
 		if (aes_mt_provider != NULL) {
 			/* use the previous key length to determine which cipher to load */
 			if (cipher->key_len == 32)
@@ -366,11 +353,6 @@ cipher_init(struct sshcipher_ctx **ccp, const struct sshcipher *cipher,
 			ERR_print_errors_fp(stderr);
 			fatal("Failed to load HPN-SSH AES-CTR-MT provider.");
 		}
-
-		read_mem_stats(&result, post_auth);
-
-		debug_f("********* post EVP_CIPHER_fetch memory usage is now virt: %lu, res: %lu, share: %lu",
-			result.size*4, result.resident*4, result.share*4);
 #else
 		type = (*evp_aes_ctr_mt)(); /* see cipher-ctr-mt.c */
 		/* we need to free this later if using aes_ctr_mt
@@ -386,47 +368,23 @@ cipher_init(struct sshcipher_ctx **ccp, const struct sshcipher *cipher,
 		ret = SSH_ERR_LIBCRYPTO_ERROR;
 		goto out;
 	}
-	if (post_auth) {
-	  read_mem_stats(&result, post_auth);
-
-	  debug_f("********* post 1st EVP_CIPHER_init memory usage is now virt: %lu, res: %lu, share: %lu",
-		  result.size*4, result.resident*4, result.share*4);
-	}
 	if (cipher_authlen(cipher) &&
 	    !EVP_CIPHER_CTX_ctrl(cc->evp, EVP_CTRL_GCM_SET_IV_FIXED,
 	    -1, (u_char *)iv)) {
 		ret = SSH_ERR_LIBCRYPTO_ERROR;
 		goto out;
 	}
-	if (post_auth) {
-	  read_mem_stats(&result, post_auth);
-
-	  debug_f("********* post 1st authlen memory usage is now virt: %lu, res: %lu, share: %lu",
-		  result.size*4, result.resident*4, result.share*4);
-	}
 	klen = EVP_CIPHER_CTX_key_length(cc->evp);
 	if (klen > 0 && keylen != (u_int)klen) {
 		if (EVP_CIPHER_CTX_set_key_length(cc->evp, keylen) == 0) {
 			ret = SSH_ERR_LIBCRYPTO_ERROR;
 			goto out;
 		}
 	}
-	if (post_auth) {
-	  read_mem_stats(&result, post_auth);
-
-	  debug_f("********* post key_len memory usage is now virt: %lu, res: %lu, share: %lu",
-		  result.size*4, result.resident*4, result.share*4);
-	}
 	if (EVP_CipherInit(cc->evp, NULL, (u_char *)key, NULL, -1) == 0) {
 		ret = SSH_ERR_LIBCRYPTO_ERROR;
 		goto out;
 	}
-	if (post_auth) {
-	  read_mem_stats(&result, post_auth);
-
-	  debug_f("********* post 2nd EVP_CIPHER_init memory usage is now virt: %lu, res: %lu, share: %lu",
-		  result.size*4, result.resident*4, result.share*4);
-	}
 	ret = 0;
 #endif /* WITH_OPENSSL */
  out:

packet.c

@@ -105,7 +105,7 @@
 
 /* SSH_IOBUFSZ + 1k of head room */
 /* OpenSSH usings 256KB packet size max but that consumes a
- * lot of memory wiht the buffers we are using. This keeps it 
+ * lot of memory wiht the buffers we are using. This keeps it
  * in check. Doesn't seem to have an impact on performance or
  * functionality cjr 04/06/2023 */
 #define PACKET_MAX_SIZE (SSH_IOBUFSZ + 1024)
@@ -1846,7 +1846,6 @@ ssh_packet_process_read(struct ssh *ssh, int fd)
 		return r;
 
 	if (state->packet_discard) {
-		debug_f("discard");
 		if ((r = sshbuf_consume_end(state->input, rlen)) != 0)
 			return r;
 		state->keep_alive_timeouts = 0; /* ?? */

session.c

@@ -706,15 +706,6 @@ do_exec(struct ssh *ssh, Session *s, const char *command)
 	    ssh_remote_port(ssh),
 	    s->self);
 
-	int post_auth = packet_authentication_state(ssh);
-	if (post_auth) {
-	  struct statm_t result;
-	  read_mem_stats(&result, post_auth);
-	   debug_f("********** Post session start memory usage is now virt: %lu, res: %lu, share: %lu",
-		  result.size*4, result.resident*4, result.share*4);
-	}
-
-	
 #ifdef SSH_AUDIT_EVENTS
 	if (command != NULL)
 		PRIVSEP(audit_run_command(command));

sshbuf-misc.c

@@ -283,21 +283,16 @@ sshbuf_read(int fd, struct sshbuf *buf, size_t maxlen, size_t *rlen)
 		*rlen = 0;
 	if ((r = sshbuf_reserve(buf, maxlen, &d)) != 0)
 		return r;
-	//debug_f("trying to reserve %zu, r is %d", maxlen, r);
-
 	rr = read(fd, d, maxlen);
 	oerrno = errno;
-	
+
 	/* Adjust the buffer to include only what was actually read */
 	if ((adjust = maxlen - (rr > 0 ? rr : 0)) != 0) {
-	  //debug_f("adjust: %zu, rr: %zu, maxlen: %zu", adjust, rr, maxlen);
 		if ((r = sshbuf_consume_end(buf, adjust)) != 0) {
 			/* avoid returning uninitialised data to caller */
 			memset(d + rr, '\0', adjust);
 			return SSH_ERR_INTERNAL_ERROR; /* shouldn't happen */
 		}
-	} else {
-	  //debug_f("FOOL!!! adjust: %zu, rr: %zu, maxlen: %zu", adjust, rr, maxlen);
 	}
 	if (rr < 0) {
 		errno = oerrno;
@@ -309,8 +304,6 @@ sshbuf_read(int fd, struct sshbuf *buf, size_t maxlen, size_t *rlen)
 	/* success */
 	if (rlen != NULL) {
 		*rlen = (size_t)rr;
-		//debug_f("rlen at end is %zu", *rlen);
-	} //else
-	  //debug_f("RLEN IS NULL!");
+	}
 	return 0;
 }