Fix memory leak in DSA redo case.

Found by clang scan-build. Signed-off-by: Kurt Roeckx <kurt@roeckx.be> Reviewed-by: Richard Levitte <levitte@openssl.org> RT: #4184, MR: #1496 (cherry picked from commit 679d87515d23ca31491effdc264edc81c695a72a)
author: David Benjamin <davidben@chromium.org> 2015-12-17 20:11:11 +0100
committer: Kurt Roeckx <kurt@roeckx.be> 2015-12-22 11:54:42 +0100
commit: 1967199f9f8ed3faf376ddbb077f41551541f08a (patch)
tree: 2dc68bf928609d33c137810269d1a56b8938db95 /crypto
parent: 23a58779f53a9060c823d00d76b3070cad61d9a3 (diff)
1 files changed, 4 insertions, 4 deletions
diff --git a/crypto/dsa/dsa_ossl.c b/crypto/dsa/dsa_ossl.c
index 6edb26d973..9a3772e00d 100644
--- a/crypto/dsa/dsa_ossl.c
+++ b/crypto/dsa/dsa_ossl.c
@@ -187,9 +187,6 @@ static DSA_SIG *dsa_do_sign(const unsigned char *dgst, int dlen, DSA *dsa)
     if (!BN_mod_mul(s, s, kinv, dsa->q, ctx))
         goto err;
 
-    ret = DSA_SIG_new();
-    if (ret == NULL)
-        goto err;
     /*
      * Redo if r or s is zero as required by FIPS 186-3: this is very
      * unlikely.
@@ -201,11 +198,14 @@ static DSA_SIG *dsa_do_sign(const unsigned char *dgst, int dlen, DSA *dsa)
         }
         goto redo;
     }
+    ret = DSA_SIG_new();
+    if (ret == NULL)
+        goto err;
     ret->r = r;
     ret->s = s;
 
  err:
-    if (!ret) {
+    if (ret == NULL) {
         DSAerr(DSA_F_DSA_DO_SIGN, reason);
         BN_free(r);
         BN_free(s);
author	David Benjamin <davidben@chromium.org>	2015-12-17 20:11:11 +0100
committer	Kurt Roeckx <kurt@roeckx.be>	2015-12-22 11:54:42 +0100
commit	1967199f9f8ed3faf376ddbb077f41551541f08a (patch)
tree	2dc68bf928609d33c137810269d1a56b8938db95 /crypto
parent	23a58779f53a9060c823d00d76b3070cad61d9a3 (diff)