Fix a possible memleak in rsa_pub_encode

That seems to be only an issue for RSA-PSS with parameters. Spotted by code review, so it looks like there is no test coverage for this. Reviewed-by: Dmitry Belyavskiy <beldmit@gmail.com> Reviewed-by: Tomas Mraz <tomas@openssl.org> (Merged from https://github.com/openssl/openssl/pull/22032) (cherry picked from commit 285eb1688f05ad477fefc681bf05d0afedc46d40)
author: Bernd Edlinger <bernd.edlinger@hotmail.de> 2023-09-07 19:22:25 +0200
committer: Tomas Mraz <tomas@openssl.org> 2023-09-11 10:50:34 +0200
commit: b98fdb318b367d73cae7680eb264c4424098d537 (patch)
tree: 60b16b6949427a95b915e5b337c41a14a71127df /crypto
parent: a6101a3bf0f28011ae6fe692d0fd8ccecf4bdc03 (diff)
1 files changed, 4 insertions, 1 deletions
diff --git a/crypto/rsa/rsa_ameth.c b/crypto/rsa/rsa_ameth.c
index e819780e7d..07734077e3 100644
--- a/crypto/rsa/rsa_ameth.c
+++ b/crypto/rsa/rsa_ameth.c
@@ -60,13 +60,16 @@ static int rsa_pub_encode(X509_PUBKEY *pk, const EVP_PKEY *pkey)
     if (!rsa_param_encode(pkey, &str, &strtype))
         return 0;
     penclen = i2d_RSAPublicKey(pkey->pkey.rsa, &penc);
-    if (penclen <= 0)
+    if (penclen <= 0) {
+        ASN1_STRING_free(str);
         return 0;
+    }
     if (X509_PUBKEY_set0_param(pk, OBJ_nid2obj(pkey->ameth->pkey_id),
                                strtype, str, penc, penclen))
         return 1;
 
     OPENSSL_free(penc);
+    ASN1_STRING_free(str);
     return 0;
 }
author	Bernd Edlinger <bernd.edlinger@hotmail.de>	2023-09-07 19:22:25 +0200
committer	Tomas Mraz <tomas@openssl.org>	2023-09-11 10:50:34 +0200
commit	b98fdb318b367d73cae7680eb264c4424098d537 (patch)
tree	60b16b6949427a95b915e5b337c41a14a71127df /crypto
parent	a6101a3bf0f28011ae6fe692d0fd8ccecf4bdc03 (diff)