summaryrefslogtreecommitdiff
diff options
context:
space:
mode:
authorDimitri Staessens <dimitri@ouroboros.rocks>2026-01-19 19:31:58 +0100
committerSander Vrijders <sander@ouroboros.rocks>2026-01-23 08:20:27 +0100
commit9f2e078c694d375ff7a633e629d05554c873c8dc (patch)
treed408b478df97dff2d8c2646cf8680d0a3dd9b0fa
parentc20c5bfb40bb65d4196bcf97e80acd97496ddda3 (diff)
downloadouroboros-9f2e078c694d375ff7a633e629d05554c873c8dc.tar.gz
ouroboros-9f2e078c694d375ff7a633e629d05554c873c8dc.zip
lib: Fix memleak in oap tests
The test_oap_piggyback_data was not cleaning up the passed data correctly. Also, a FILE * was not properly closed in the openssl load_pubkey_raw_file_to_der() wrapper. Refactored some fail paths to make them easier to read. Signed-off-by: Dimitri Staessens <dimitri@ouroboros.rocks> Signed-off-by: Sander Vrijders <sander@ouroboros.rocks>
Diffstat
-rw-r--r--src/irmd/oap/tests/oap_test.c16
-rw-r--r--src/lib/crypt/openssl.c16
2 files changed, 18 insertions, 14 deletions
diff --git a/src/irmd/oap/tests/oap_test.c b/src/irmd/oap/tests/oap_test.c
index 70943d7c..70f0a248 100644
--- a/src/irmd/oap/tests/oap_test.c
+++ b/src/irmd/oap/tests/oap_test.c
@@ -245,14 +245,13 @@ static int test_oap_piggyback_data(void)
/* Set server's response data (ctx.data will take cli data) */
srv_data.len = strlen(srv_data_str);
- srv_data.data = malloc(srv_data.len);
- if (srv_data.data == NULL)
- goto fail_cleanup;
- memcpy(srv_data.data, srv_data_str, srv_data.len);
+ srv_data.data = (uint8_t *) srv_data_str;
freebuf(ctx.data);
- ctx.data = srv_data;
- clrbuf(srv_data);
+ ctx.data.data = srv_data.data;
+ ctx.data.len = srv_data.len;
+ srv_data.data = NULL;
+ srv_data.len = 0;
if (oap_srv_process_ctx(&ctx) < 0)
goto fail_cleanup;
@@ -276,6 +275,11 @@ static int test_oap_piggyback_data(void)
goto fail_cleanup;
}
+ /* Free the copied data */
+ free(ctx.data.data);
+ ctx.data.data = NULL;
+ ctx.data.len = 0;
+
if (memcmp(ctx.cli.key, ctx.srv.key, SYMMKEYSZ) != 0) {
printf("Client and server keys do not match!\n");
goto fail_cleanup;
diff --git a/src/lib/crypt/openssl.c b/src/lib/crypt/openssl.c
index 71a69c1c..638da209 100644
--- a/src/lib/crypt/openssl.c
+++ b/src/lib/crypt/openssl.c
@@ -1213,21 +1213,19 @@ int openssl_load_pubkey_file_to_der(const char * path,
if (pkey == NULL)
goto fail_key;
- fclose(fp);
-
/* Extract public key bytes in DER format */
ret = get_pk_bytes_from_key(pkey, buf);
+ if (ret < 0)
+ goto fail_extract;
EVP_PKEY_free(pkey);
- if (ret < 0)
- goto fail_extract;
+ fclose(fp);
return 0;
fail_extract:
- clrbuf(*buf);
- return -1;
+ EVP_PKEY_free(pkey);
fail_key:
fclose(fp);
fail_file:
@@ -1295,6 +1293,7 @@ int openssl_load_pubkey_raw_file(const char * path,
memcpy(buf->data, tmp_buf, bytes_read);
buf->len = bytes_read;
+ fclose(fp);
return 0;
fail_malloc:
@@ -1337,8 +1336,6 @@ int openssl_load_privkey_raw_file(const char * path,
goto fail_file;
bytes_read = fread(tmp_buf, 1, sizeof(tmp_buf), fp);
- fclose(fp);
-
if (bytes_read == 0)
goto fail_read;
@@ -1355,11 +1352,14 @@ int openssl_load_privkey_raw_file(const char * path,
if (pkey == NULL)
goto fail_read;
+ fclose(fp);
+
*key = (void *) pkey;
return 0;
fail_read:
+ fclose(fp);
fail_file:
*key = NULL;
return -1;
generated by cgit v1.2.3 (git 2.39.1) at 2026-01-29 20:24:21 +0000