en EVP_PKEY_CTX_set_rsa_keygen_pubexp() BIGNUM management

Fixes #12635 As discussed in the issue, supporting the set0-like semantics long-term is not necessarily desirable, although necessary for short-term compatibility concerns. So I've deprecated the original method and added an equivalent that is explicitly labelled as set1. I tried to audit existing usages of the (now-deprecated) API and update them to use set1 if that appeared to align with their expectations. Reviewed-by: Matt Caswell <matt@openssl.org> Reviewed-by: Shane Lontis <shane.lontis@oracle.com> (Merged from https://github.com/openssl/openssl/pull/12917)
author: jwalch <jeremy.walch@gmail.com> 2020-09-24 11:43:06 -0400
committer: Shane Lontis <shane.lontis@oracle.com> 2020-09-26 07:31:59 +1000
commit: 3786d74868fe440250f902ce1a78974136ca9304 (patch)
tree: 14b99e0d58685d1a46482f6f80558113f5b5fa11 /crypto/evp/pmeth_lib.c
parent: fa9e541d49b812549d56c03852290a86aa1645ff (diff)
1 files changed, 1 insertions, 0 deletions
diff --git a/crypto/evp/pmeth_lib.c b/crypto/evp/pmeth_lib.c
index 656a0e065a..a3a65857b8 100644
--- a/crypto/evp/pmeth_lib.c
+++ b/crypto/evp/pmeth_lib.c
@@ -402,6 +402,7 @@ void EVP_PKEY_CTX_free(EVP_PKEY_CTX *ctx)
 #if !defined(OPENSSL_NO_ENGINE) && !defined(FIPS_MODULE)
     ENGINE_finish(ctx->engine);
 #endif
+    BN_free(ctx->rsa_pubexp);
     OPENSSL_free(ctx);
 }
author	jwalch <jeremy.walch@gmail.com>	2020-09-24 11:43:06 -0400
committer	Shane Lontis <shane.lontis@oracle.com>	2020-09-26 07:31:59 +1000
commit	3786d74868fe440250f902ce1a78974136ca9304 (patch)
tree	14b99e0d58685d1a46482f6f80558113f5b5fa11 /crypto/evp/pmeth_lib.c
parent	fa9e541d49b812549d56c03852290a86aa1645ff (diff)