upstream/haproxy
1
0
Fork 0
mirror of https://github.com/haproxy/haproxy.git synced 2026-05-22 01:47:51 -04:00
Code Issues Projects Releases Packages Wiki Activity Actions 12

BUG/MINOR: jwt: fix possible memory leak in convert_ecdsa_sig() error path

Browse source 
The allocated ec_R and ec_S were not released in case one of the two
would fail to be allocated/created, and would cause a memory leak. Let's
add the missing BN_free(). This may be backported to 2.4.
This commit is contained in:
Willy Tarreau 2026-04-29 11:26:00 +02:00
parent bbc41785d9
commit d4a4be6c34
1 changed files with 2 additions and 0 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

2
src/jwt.c
View file

@ -324,6 +324,8 @@ static int convert_ecdsa_sig(const struct jwt_ctx *ctx, struct buffer *signature
ec_S = BN_bin2bn((unsigned char *)(b_orig(signature) + bignum_len), bignum_len, NULL);
if (!ec_R || !ec_S) {
BN_free(ec_R);
BN_free(ec_S);
retval = JWT_VRFY_INVALID_TOKEN;
goto end;
}