[openssl/openssl] d32dd6: Fix memleak in rsa_cms_decrypt

Shane noreply at github.com
Fri Dec 29 09:44:03 UTC 2023 

  Branch: refs/heads/master
  Home:   https://github.com/openssl/openssl
  Commit: d32dd65053431ee744d213b336b9a03a035807e6
      https://github.com/openssl/openssl/commit/d32dd65053431ee744d213b336b9a03a035807e6
  Author: slontis <shane.lontis at oracle.com>
  Date:   2023-12-29 (Fri, 29 Dec 2023)

  Changed paths:
    M crypto/cms/cms_rsa.c

  Log Message:
  -----------
  Fix memleak in rsa_cms_decrypt

If a call to EVP_PKEY_CTX_set_rsa_mgf1_md() fails then the caller
needs to free the label.

Reviewed-by: Tom Cosgrove <tom.cosgrove at arm.com>
Reviewed-by: Tomas Mraz <tomas at openssl.org>
(Merged from https://github.com/openssl/openssl/pull/20319)


  Commit: 0c3eb31b55d3c1544e4e044c2e3c939655bac93d
      https://github.com/openssl/openssl/commit/0c3eb31b55d3c1544e4e044c2e3c939655bac93d
  Author: slontis <shane.lontis at oracle.com>
  Date:   2023-12-29 (Fri, 29 Dec 2023)

  Changed paths:
    M crypto/rsa/rsa_lib.c

  Log Message:
  -----------
  Limit RSA-OAEP related functions to RSA keys only

Make EVP_PKEY_CTX_set_rsa_oaep_md() and
EVP_PKEY_CTX_get_rsa_oaep_md_name() only work for RSA keys.

Since these calls use "digest" as a OSSL_PARAM, they should not
work for other key types.

Reviewed-by: Tom Cosgrove <tom.cosgrove at arm.com>
Reviewed-by: Tomas Mraz <tomas at openssl.org>
(Merged from https://github.com/openssl/openssl/pull/20319)


  Commit: 26183614ed1dc03f509f26839b8a465684ca0f84
      https://github.com/openssl/openssl/commit/26183614ed1dc03f509f26839b8a465684ca0f84
  Author: slontis <shane.lontis at oracle.com>
  Date:   2023-12-29 (Fri, 29 Dec 2023)

  Changed paths:
    M providers/implementations/asymciphers/rsa_enc.c

  Log Message:
  -----------
  Add missing settable entry OSSL_ASYM_CIPHER_PARAM_OAEP_DIGEST_PROPS for RSA asym

Reviewed-by: Tom Cosgrove <tom.cosgrove at arm.com>
Reviewed-by: Tomas Mraz <tomas at openssl.org>
(Merged from https://github.com/openssl/openssl/pull/20319)


Compare: https://github.com/openssl/openssl/compare/73ebaac82718...26183614ed1d

More information about the openssl-commits mailing list