dh-gex: fix moduli file stream leak

Ensure to close the moduli file stream in `ssh_retrieve_dhgroup`. The leak is observable with the pkd tests and valgrind with: valgrind \ --track-fds=yes \ ./pkd_hello -i1 \ -t torture_pkd_openssh_rsa_rsa_diffie_hellman_group_exchange_sha256 Signed-off-by: Jon Simons <jon@jonsimons.org> Reviewed-by: Andreas Schneider <asn@cryptomilk.org>
2026-02-06 18:29:50 +09:00 · 2019-01-29 19:43:07 -05:00
parent 04c97c0eaf
commit 886681a421
1 changed files with 1 additions and 0 deletions
--- a/src/dh-gex.c
+++ b/src/dh-gex.c
@@ -481,6 +481,7 @@ static int ssh_retrieve_dhgroup(uint32_t pmin,
                                   size,
                                   &generator,
                                   &modulus);
+    fclose(moduli);
    if (rc == SSH_ERROR || *size == 0) {
        goto error;
    }