Fix pointer cleanup on dynamic allocation failure

hanno-becker · hanno-becker · commit eceae93c93a2 · 2025-12-17T13:07:22.000Z
When using a custom alloc/free implementation, allocation may fail,
in which case the cleanup section needs to zeroize and free those
pointers there were successfully allocated, and skip those for which
allocation failed. This skipping of failed allocations is not
implemented correctly and would lead to a null pointer dereference.

This commit fixes this.

Signed-off-by: Hanno Becker &lt;beckphan@amazon.co.uk&gt;
diff --git a/mlkem/src/common.h b/mlkem/src/common.h
@@ -187,12 +187,15 @@
 /* Custom allocation */
 
 #define MLK_ALLOC(v, T, N) MLK_CUSTOM_ALLOC(v, T, N)
-#define MLK_FREE(v, T, N)            \
-  do                                 \
-  {                                  \
-    mlk_zeroize(v, sizeof(T) * (N)); \
-    MLK_CUSTOM_FREE(v, T, N);        \
-    v = NULL;                        \
+#define MLK_FREE(v, T, N)              \
+  do                                   \
+  {                                    \
+    if (v != NULL)                     \
+    {                                  \
+      mlk_zeroize(v, sizeof(T) * (N)); \
+      MLK_CUSTOM_FREE(v, T, N);        \
+      v = NULL;                        \
+    }                                  \
   } while (0)
 
 #endif /* MLK_CONFIG_CUSTOM_ALLOC_FREE */
