Rust wrapper: store pointer to WC_RNG instead of full struct (WIP)

holtrop-wolfssl · holtrop-wolfssl · commit 91528f48aa45 · 2026-04-28T15:54:00.000-04:00
diff --git a/wrapper/rust/wolfssl-wolfcrypt/src/curve25519.rs b/wrapper/rust/wolfssl-wolfcrypt/src/curve25519.rs
@@ -84,7 +84,7 @@ impl Curve25519Key {
         let wc_key = unsafe { wc_key.assume_init() };
         let mut curve25519key = Curve25519Key { wc_key };
         let rc = unsafe {
-            sys::wc_curve25519_make_key(&mut rng.wc_rng, Self::KEYSIZE as i32,
+            sys::wc_curve25519_make_key(rng.wc_rng, Self::KEYSIZE as i32,
                 &mut curve25519key.wc_key)
         };
         if rc != 0 {
@@ -109,7 +109,7 @@ impl Curve25519Key {
             return Err(sys::wolfCrypt_ErrorCodes_BUFFER_E);
         }
         let rc = unsafe {
-            sys::wc_curve25519_make_priv(&mut rng.wc_rng, Self::KEYSIZE as i32, out.as_mut_ptr())
+            sys::wc_curve25519_make_priv(rng.wc_rng, Self::KEYSIZE as i32, out.as_mut_ptr())
         };
         if rc != 0 {
             return Err(rc);
@@ -358,7 +358,7 @@ impl Curve25519Key {
         let public_size = crate::buffer_len_to_i32(public.len())?;
         let rc = unsafe {
             sys::wc_curve25519_make_pub_blind(public_size, public.as_mut_ptr(),
-                private_size, private.as_ptr(), &mut rng.wc_rng)
+                private_size, private.as_ptr(), rng.wc_rng)
         };
         if rc != 0 {
             return Err(rc);
@@ -415,7 +415,7 @@ impl Curve25519Key {
         let rc = unsafe {
             sys::wc_curve25519_generic_blind(public_size, public.as_mut_ptr(),
                 private_size, private.as_ptr(), basepoint_size, basepoint.as_ptr(),
-                &mut rng.wc_rng)
+                rng.wc_rng)
         };
         if rc != 0 {
             return Err(rc);
@@ -457,8 +457,14 @@ impl Curve25519Key {
     /// # Parameters
     ///
     /// * `rng`: The `RNG` struct instance to associate with this
-    ///   `Curve25519Key` instance. The `RNG` struct should not be moved in
-    ///   memory after calling this method.
+    ///   `Curve25519Key` instance.
+    ///
+    /// # Safety contract
+    ///
+    /// The caller must ensure that the `RNG` instance is not dropped before
+    /// this `Curve25519Key` instance. The `Curve25519Key` struct holds an
+    /// internal pointer to the `RNG`'s underlying `WC_RNG` context, and
+    /// dropping the `RNG` first would result in a dangling pointer.
     ///
     /// # Returns
     ///
@@ -467,7 +473,7 @@ impl Curve25519Key {
     #[cfg(all(curve25519_blinding, random))]
     pub fn set_rng(&mut self, rng: &mut RNG) -> Result<(), i32> {
         let rc = unsafe {
-            sys::wc_curve25519_set_rng(&mut self.wc_key, &mut rng.wc_rng)
+            sys::wc_curve25519_set_rng(&mut self.wc_key, rng.wc_rng)
         };
         if rc != 0 {
             return Err(rc);
diff --git a/wrapper/rust/wolfssl-wolfcrypt/src/dh.rs b/wrapper/rust/wolfssl-wolfcrypt/src/dh.rs
@@ -242,7 +242,7 @@ impl DH {
         let wc_dhkey = unsafe { wc_dhkey.assume_init() };
         let mut dh = DH { wc_dhkey };
         let rc = unsafe {
-            sys::wc_DhGenerateParams(&mut rng.wc_rng, modulus_size, &mut dh.wc_dhkey)
+            sys::wc_DhGenerateParams(rng.wc_rng, modulus_size, &mut dh.wc_dhkey)
         };
         if rc != 0 {
             return Err(rc);
@@ -1050,7 +1050,7 @@ impl DH {
         let wc_dhkey = unsafe { wc_dhkey.assume_init() };
         let mut dh = DH { wc_dhkey };
         let rc = unsafe {
-            sys::wc_DhSetCheckKey(&mut dh.wc_dhkey, p.as_ptr(), p_size, g.as_ptr(), g_size, q.as_ptr(), q_size, trusted, &mut rng.wc_rng)
+            sys::wc_DhSetCheckKey(&mut dh.wc_dhkey, p.as_ptr(), p_size, g.as_ptr(), g_size, q.as_ptr(), q_size, trusted, rng.wc_rng)
         };
         if rc != 0 {
             return Err(rc);
@@ -1515,7 +1515,7 @@ impl DH {
         *private_size = crate::buffer_len_to_u32(private.len())?;
         *public_size = crate::buffer_len_to_u32(public.len())?;
         let rc = unsafe {
-            sys::wc_DhGenerateKeyPair(&mut self.wc_dhkey, &mut rng.wc_rng,
+            sys::wc_DhGenerateKeyPair(&mut self.wc_dhkey, rng.wc_rng,
                 private.as_mut_ptr(), private_size,
                 public.as_mut_ptr(), public_size)
         };
diff --git a/wrapper/rust/wolfssl-wolfcrypt/src/dilithium.rs b/wrapper/rust/wolfssl-wolfcrypt/src/dilithium.rs
@@ -202,7 +202,7 @@ impl Dilithium {
         if rc != 0 {
             return Err(rc);
         }
-        let rc = unsafe { sys::wc_dilithium_make_key(&mut key.ws_key, &mut rng.wc_rng) };
+        let rc = unsafe { sys::wc_dilithium_make_key(&mut key.ws_key, rng.wc_rng) };
         if rc != 0 {
             return Err(rc);
         }
@@ -869,7 +869,7 @@ impl Dilithium {
                 msg.as_ptr(), msg_len,
                 sig.as_mut_ptr(), &mut sig_len,
                 &mut self.ws_key,
-                &mut rng.wc_rng,
+                rng.wc_rng,
             )
         };
         if rc != 0 {
@@ -931,7 +931,7 @@ impl Dilithium {
                 msg.as_ptr(), msg_len,
                 sig.as_mut_ptr(), &mut sig_len,
                 &mut self.ws_key,
-                &mut rng.wc_rng,
+                rng.wc_rng,
             )
         };
         if rc != 0 {
@@ -981,7 +981,7 @@ impl Dilithium {
                 hash.as_ptr(), hash_len,
                 sig.as_mut_ptr(), &mut sig_len,
                 &mut self.ws_key,
-                &mut rng.wc_rng,
+                rng.wc_rng,
             )
         };
         if rc != 0 {
diff --git a/wrapper/rust/wolfssl-wolfcrypt/src/ecc.rs b/wrapper/rust/wolfssl-wolfcrypt/src/ecc.rs
@@ -438,7 +438,7 @@ impl ECC {
         let wc_ecc_key = unsafe { wc_ecc_key.assume_init() };
         let mut ecc = ECC { wc_ecc_key };
         let rc = unsafe {
-            sys::wc_ecc_make_key(&mut rng.wc_rng, size, &mut ecc.wc_ecc_key)
+            sys::wc_ecc_make_key(rng.wc_rng, size, &mut ecc.wc_ecc_key)
         };
         if rc != 0 {
             return Err(rc);
@@ -495,7 +495,7 @@ impl ECC {
         let wc_ecc_key = unsafe { wc_ecc_key.assume_init() };
         let mut ecc = ECC { wc_ecc_key };
         let rc = unsafe {
-            sys::wc_ecc_make_key_ex(&mut rng.wc_rng, size, &mut ecc.wc_ecc_key, curve_id)
+            sys::wc_ecc_make_key_ex(rng.wc_rng, size, &mut ecc.wc_ecc_key, curve_id)
         };
         if rc != 0 {
             return Err(rc);
@@ -553,7 +553,7 @@ impl ECC {
         let wc_ecc_key = unsafe { wc_ecc_key.assume_init() };
         let mut ecc = ECC { wc_ecc_key };
         let rc = unsafe {
-            sys::wc_ecc_make_key_ex2(&mut rng.wc_rng, size, &mut ecc.wc_ecc_key, curve_id, flags)
+            sys::wc_ecc_make_key_ex2(rng.wc_rng, size, &mut ecc.wc_ecc_key, curve_id, flags)
         };
         if rc != 0 {
             return Err(rc);
@@ -1676,7 +1676,7 @@ impl ECC {
     #[cfg(random)]
     pub fn make_pub(&mut self, rng: Option<&mut RNG>) -> Result<(), i32> {
         let rng_ptr = match rng {
-            Some(rng) => &mut rng.wc_rng,
+            Some(rng) => rng.wc_rng,
             None => core::ptr::null_mut(),
         };
         let rc = unsafe {
@@ -1720,7 +1720,7 @@ impl ECC {
     #[cfg(random)]
     pub fn make_pub_to_point(&mut self, rng: Option<&mut RNG>, heap: Option<*mut core::ffi::c_void>) -> Result<ECCPoint, i32> {
         let rng_ptr = match rng {
-            Some(rng) => &mut rng.wc_rng,
+            Some(rng) => rng.wc_rng,
             None => core::ptr::null_mut(),
         };
         let heap = match heap {
@@ -1749,8 +1749,14 @@ impl ECC {
     /// # Parameters
     ///
     /// * `rng`: The `RNG` struct instance to associate with this `ECC`
-    ///   instance. The `RNG` struct should not be moved in memory after
-    ///   calling this method.
+    ///   instance.
+    ///
+    /// # Safety contract
+    ///
+    /// The caller must ensure that the `RNG` instance is not dropped before
+    /// this `ECC` instance. The `ECC` struct holds an internal pointer to the
+    /// `RNG`'s underlying `WC_RNG` context, and dropping the `RNG` first
+    /// would result in a dangling pointer.
     ///
     /// # Returns
     ///
@@ -1773,7 +1779,7 @@ impl ECC {
     #[cfg(random)]
     pub fn set_rng(&mut self, rng: &mut RNG) -> Result<(), i32> {
         let rc = unsafe {
-            sys::wc_ecc_set_rng(&mut self.wc_ecc_key, &mut rng.wc_rng)
+            sys::wc_ecc_set_rng(&mut self.wc_ecc_key, rng.wc_rng)
         };
         if rc != 0 {
             return Err(rc);
@@ -1915,7 +1921,7 @@ impl ECC {
         let mut dout_size = crate::buffer_len_to_u32(dout.len())?;
         let rc = unsafe {
             sys::wc_ecc_sign_hash(din.as_ptr(), din_size, dout.as_mut_ptr(),
-                &mut dout_size, &mut rng.wc_rng, &mut self.wc_ecc_key)
+                &mut dout_size, rng.wc_rng, &mut self.wc_ecc_key)
         };
         if rc != 0 {
             return Err(rc);
diff --git a/wrapper/rust/wolfssl-wolfcrypt/src/ecdsa.rs b/wrapper/rust/wolfssl-wolfcrypt/src/ecdsa.rs
@@ -254,7 +254,7 @@ macro_rules! define_ecdsa_curve {
                         der.as_mut_ptr(), &mut der_len,
                         &mut self.inner.wc_ecc_key as *mut _ as *mut c_void,
                         size_of::<sys::ecc_key>() as u32,
-                        &mut self.rng.wc_rng,
+                        self.rng.wc_rng,
                     )
                 };
                 if rc != 0 {
diff --git a/wrapper/rust/wolfssl-wolfcrypt/src/ed25519.rs b/wrapper/rust/wolfssl-wolfcrypt/src/ed25519.rs
@@ -114,7 +114,7 @@ impl Ed25519 {
         let ws_key = unsafe { ws_key.assume_init() };
         let mut ed25519 = Ed25519 { ws_key };
         let rc = unsafe {
-            sys::wc_ed25519_make_key(&mut rng.wc_rng,
+            sys::wc_ed25519_make_key(rng.wc_rng,
                 sys::ED25519_KEY_SIZE as i32, &mut ed25519.ws_key)
         };
         if rc != 0 {
diff --git a/wrapper/rust/wolfssl-wolfcrypt/src/ed448.rs b/wrapper/rust/wolfssl-wolfcrypt/src/ed448.rs
@@ -113,7 +113,7 @@ impl Ed448 {
         let ws_key = unsafe { ws_key.assume_init() };
         let mut ed448 = Ed448 { ws_key };
         let rc = unsafe {
-            sys::wc_ed448_make_key(&mut rng.wc_rng,
+            sys::wc_ed448_make_key(rng.wc_rng,
                 sys::ED448_KEY_SIZE as i32, &mut ed448.ws_key)
         };
         if rc != 0 {
diff --git a/wrapper/rust/wolfssl-wolfcrypt/src/lms.rs b/wrapper/rust/wolfssl-wolfcrypt/src/lms.rs
@@ -444,7 +444,7 @@ impl Lms {
     /// ```
     #[cfg(all(lms_make_key, random))]
     pub fn make_key(&mut self, rng: &mut RNG) -> Result<(), i32> {
-        let rc = unsafe { sys::wc_LmsKey_MakeKey(&mut self.ws_key, &mut rng.wc_rng) };
+        let rc = unsafe { sys::wc_LmsKey_MakeKey(&mut self.ws_key, rng.wc_rng) };
         if rc != 0 {
             return Err(rc);
         }
diff --git a/wrapper/rust/wolfssl-wolfcrypt/src/mlkem.rs b/wrapper/rust/wolfssl-wolfcrypt/src/mlkem.rs
@@ -162,7 +162,7 @@ impl MlKem {
         dev_id: Option<i32>,
     ) -> Result<Self, i32> {
         let key = Self::new_ex(key_type, heap, dev_id)?;
-        let rc = unsafe { sys::wc_MlKemKey_MakeKey(key.ws_key, &mut rng.wc_rng) };
+        let rc = unsafe { sys::wc_MlKemKey_MakeKey(key.ws_key, rng.wc_rng) };
         if rc != 0 {
             return Err(rc);
         }
@@ -489,7 +489,7 @@ impl MlKem {
                 self.ws_key,
                 ct.as_mut_ptr(),
                 ss.as_mut_ptr(),
-                &mut rng.wc_rng,
+                rng.wc_rng,
             )
         };
         if rc != 0 {
diff --git a/wrapper/rust/wolfssl-wolfcrypt/src/random.rs b/wrapper/rust/wolfssl-wolfcrypt/src/random.rs
@@ -45,18 +45,19 @@ rng.generate_block(&mut buffer).expect("Failed to generate a block");
 #![cfg(random)]
 
 use crate::sys;
-use core::mem::{size_of_val, MaybeUninit};
+use core::mem::size_of_val;
 use num_traits::PrimInt;
 
 /// A cryptographically secure random number generator based on the wolfSSL
 /// library.
 ///
-/// This struct wraps the wolfssl `WC_RNG` type, providing a high-level API
-/// for generating random bytes and blocks of data. The `Drop` implementation
-/// ensures that the underlying wolfSSL RNG context is correctly freed when the
-/// `RNG` struct goes out of scope, preventing memory leaks.
+/// This struct wraps a pointer to a wolfssl `WC_RNG` allocated on the C heap,
+/// providing a high-level API for generating random bytes and blocks of data.
+/// The `Drop` implementation ensures that the underlying wolfSSL RNG context is
+/// correctly freed when the `RNG` struct goes out of scope, preventing memory
+/// leaks.
 pub struct RNG {
-    pub(crate) wc_rng: sys::WC_RNG,
+    pub(crate) wc_rng: *mut sys::WC_RNG,
 }
 
 impl RNG {
@@ -97,7 +98,7 @@ impl RNG {
                 return Err(rc);
             }
         }
-        let mut wc_rng: MaybeUninit<sys::WC_RNG> = MaybeUninit::uninit();
+        let mut wc_rng: *mut sys::WC_RNG = core::ptr::null_mut();
         let heap = match heap {
             Some(heap) => heap,
             None => core::ptr::null_mut(),
@@ -107,12 +108,10 @@ impl RNG {
             None => sys::INVALID_DEVID,
         };
         let rc = unsafe {
-            sys::wc_InitRng_ex(wc_rng.as_mut_ptr(), heap, dev_id)
+            sys::wc_rng_new_ex(&mut wc_rng, core::ptr::null_mut(), 0, heap, dev_id)
         };
         if rc == 0 {
-            let wc_rng = unsafe { wc_rng.assume_init() };
-            let rng = RNG {wc_rng};
-            Ok(rng)
+            Ok(RNG {wc_rng})
         } else {
             Err(rc)
         }
@@ -159,7 +158,7 @@ impl RNG {
         }
         let ptr = nonce.as_mut_ptr() as *mut u8;
         let size = crate::buffer_len_to_u32(size_of_val(nonce))?;
-        let mut wc_rng: MaybeUninit<sys::WC_RNG> = MaybeUninit::uninit();
+        let mut wc_rng: *mut sys::WC_RNG = core::ptr::null_mut();
         let heap = match heap {
             Some(heap) => heap,
             None => core::ptr::null_mut(),
@@ -169,12 +168,10 @@ impl RNG {
             None => sys::INVALID_DEVID,
         };
         let rc = unsafe {
-            sys::wc_InitRngNonce_ex(wc_rng.as_mut_ptr(), ptr, size, heap, dev_id)
+            sys::wc_rng_new_ex(&mut wc_rng, ptr, size, heap, dev_id)
         };
         if rc == 0 {
-            let wc_rng = unsafe { wc_rng.assume_init() };
-            let rng = RNG {wc_rng};
-            Ok(rng)
+            Ok(RNG {wc_rng})
         } else {
             Err(rc)
         }
@@ -317,7 +314,7 @@ impl RNG {
     /// an `Err` with the wolfssl library return code on failure.
     pub fn generate_byte(&mut self) -> Result<u8, i32> {
         let mut b: u8 = 0;
-        let rc = unsafe { sys::wc_RNG_GenerateByte(&mut self.wc_rng, &mut b) };
+        let rc = unsafe { sys::wc_RNG_GenerateByte(self.wc_rng, &mut b) };
         if rc == 0 {
             Ok(b)
         } else {
@@ -342,7 +339,7 @@ impl RNG {
     pub fn generate_block<T: PrimInt>(&mut self, buf: &mut [T]) -> Result<(), i32> {
         let ptr = buf.as_mut_ptr() as *mut u8;
         let size = crate::buffer_len_to_u32(size_of_val(buf))?;
-        let rc = unsafe { sys::wc_RNG_GenerateBlock(&mut self.wc_rng, ptr, size) };
+        let rc = unsafe { sys::wc_RNG_GenerateBlock(self.wc_rng, ptr, size) };
         if rc == 0 {
             Ok(())
         } else {
@@ -374,7 +371,7 @@ impl RNG {
     pub fn reseed(&mut self, seed: &[u8]) -> Result<(), i32> {
         let seed_size = crate::buffer_len_to_u32(seed.len())?;
         let rc = unsafe {
-            sys::wc_RNG_DRBG_Reseed(&mut self.wc_rng, seed.as_ptr(), seed_size)
+            sys::wc_RNG_DRBG_Reseed(self.wc_rng, seed.as_ptr(), seed_size)
         };
         if rc != 0 {
             return Err(rc);
@@ -411,22 +408,16 @@ impl rand_core::TryRng for RNG {
 #[cfg(feature = "rand_core")]
 impl rand_core::TryCryptoRng for RNG {}
 
-impl RNG {
-    fn zeroize(&mut self) {
-        unsafe { crate::zeroize_raw(&mut self.wc_rng); }
-    }
-}
-
 impl Drop for RNG {
     /// Safely free the underlying wolfSSL RNG context.
     ///
-    /// This calls the `wc_FreeRng` wolfssl library function.
+    /// This calls the `wc_rng_free` wolfssl library function, which frees the
+    /// C-heap-allocated `WC_RNG` object.
     ///
     /// The Rust Drop trait guarantees that this method is called when the RNG
     /// struct goes out of scope, automatically cleaning up resources and
     /// preventing memory leaks.
     fn drop(&mut self) {
-        unsafe { sys::wc_FreeRng(&mut self.wc_rng); }
-        self.zeroize();
+        unsafe { sys::wc_rng_free(self.wc_rng); }
     }
 }
diff --git a/wrapper/rust/wolfssl-wolfcrypt/src/rsa.rs b/wrapper/rust/wolfssl-wolfcrypt/src/rsa.rs
diff --git a/wrapper/rust/wolfssl-wolfcrypt/src/rsa_pkcs1v15.rs b/wrapper/rust/wolfssl-wolfcrypt/src/rsa_pkcs1v15.rs

Original file line number	Diff line number	Diff line change
`@@ -254,7 +254,7 @@ macro_rules! define_ecdsa_curve {`
`254`	`254`	`der.as_mut_ptr(), &mut der_len,`
`255`	`255`	`&mut self.inner.wc_ecc_key as mut _ as mut c_void,`
`256`	`256`	`size_of::<sys::ecc_key>() as u32,`
`257`		`- &mut self.rng.wc_rng,`
	`257`	`+ self.rng.wc_rng,`
`258`	`258`	`)`
`259`	`259`	`};`
`260`	`260`	`if rc != 0 {`
Original file line number	Diff line number	Diff line change
`@@ -444,7 +444,7 @@ impl Lms {`
`444`	`444`	/// ```
`445`	`445`	`#[cfg(all(lms_make_key, random))]`
`446`	`446`	`pub fn make_key(&mut self, rng: &mut RNG) -> Result<(), i32> {`
`447`		`- let rc = unsafe { sys::wc_LmsKey_MakeKey(&mut self.ws_key, &mut rng.wc_rng) };`
	`447`	`+ let rc = unsafe { sys::wc_LmsKey_MakeKey(&mut self.ws_key, rng.wc_rng) };`
`448`	`448`	`if rc != 0 {`
`449`	`449`	`return Err(rc);`
`450`	`450`	`}`