e_key_block(s, p, num);
+if (ret==0) goto err;
if (!(s->options & SSL_OP_DONT_INSERT_EMPTY_FRAGMENTS)) {
/*
@@ -317,11 +318,12 @@ int ssl3_setup_key_block(SSL *s)
#endif
}
}
-
+ret = 1
return ret;
err:
SSLerr(SSL_F_SSL3_SETUP_KEY_BLOCK, ERR_R_MALLOC_FAILURE);
+OPENSSL_free(p);
return (0);
}
Others: memory leak on error path
test/bntest.c
test/evp_test.c
Sincerely,
Baishakhi Ray, Yuchi Tian
--
openssl-dev mailing list
To unsubscribe: https://mta.openssl.org/mailman/listinfo/openssl-dev
> Will you make the tool and the corresponding scientific publication
> public?
Yes. We are currently in the step of evaluating our tools. We will submit
our work and share our tools when the project is done.
Sincerely,
Yuchi Tian
On Sun, Feb 5, 2017 at 6:16 AM, Hanno Böck wrote:
>
ank you for the information. I will submit the fixes as a github pull
request.
Sincerely,
Yuchi Tian
On Sun, Feb 5, 2017 at 8:49 AM, Matt Caswell wrote:
>
>
> On 05/02/17 06:54, yuchi tian wrote:
> > Dear OpenSSL developers,
> >
> > We are software engineering researchers
Thank you for pointing out. That is not what I expect, but very important
point for fix.
Sincerely,
Yuchi Tian
On Mon, Feb 6, 2017 at 4:59 PM, Lars Nordin wrote:
> On 2017-02-05 07:54, yuchi tian wrote:
>
> Dear OpenSSL developers,
>
> We are software engineering researchers a