pki_crypto.c: plug ecdsa_sig->[r,s] bignum leaks

Per ecdsa(3ssl), ECDSA_SIG_new does allocate its 'r' and 's' bignum fields. Fix a bug where the initial 'r' and 's' bignums were being overwritten with newly-allocated bignums, resulting in a memory leak. BUG: https://red.libssh.org/issues/175 Signed-off-by: Jon Simons <jon@jonsimons.org> Reviewed-by: Andreas Schneider <asn@cryptomilk.org>
2026-02-07 18:50:27 +09:00 · 2014-10-05 05:59:54 -07:00
parent a48711ae7e
commit 4745d652b5
3 changed files with 12 additions and 2 deletions
--- a/include/libssh/bignum.h
+++ b/include/libssh/bignum.h
@@ -25,6 +25,7 @@
 #include "libssh/libgcrypt.h"

 bignum make_string_bn(ssh_string string);
+void make_string_bn_inplace(ssh_string string, bignum bnout);
 ssh_string make_bignum_string(bignum num);
 void ssh_print_bignum(const char *which,bignum num);