[git] GCRYPT - branch, master, updated. libgcrypt-1.5.0-47-g8cbbad5
by Werner Koch
cvs at cvs.gnupg.org
Wed Nov 7 16:35:23 CET 2012
This is an automated email from the git hooks/post-receive script. It was
generated because a ref change was pushed to the repository containing
the project "The GNU crypto library".
The branch, master has been updated
via 8cbbad5f94f6e0429fffe66d689aea20f7e35957 (commit)
from 7af98ef78d45e813f47ae4e180a02757a379953f (commit)
Those revisions listed above that are new to this repository have
not appeared on any other notification email; so we list those
revisions in full, below.
- Log -----------------------------------------------------------------
commit 8cbbad5f94f6e0429fffe66d689aea20f7e35957
Author: Werner Koch <wk at gnupg.org>
Date: Wed Nov 7 15:02:06 2012 +0100
Fix memory leak in gcry_pk_testkey for ECC.
* cipher/ecc.c (check_secret_key): Restructure for easier allocation
tracking. Fix memory leak.
diff --git a/cipher/ecc.c b/cipher/ecc.c
index 70431fe..22de3d8 100644
--- a/cipher/ecc.c
+++ b/cipher/ecc.c
@@ -647,47 +647,48 @@ test_keys (ECC_secret_key *sk, unsigned int nbits)
static int
check_secret_key (ECC_secret_key * sk)
{
+ int rc = 1;
mpi_point_t Q;
- gcry_mpi_t y_2, y2 = mpi_alloc (0);
- mpi_ec_t ctx;
+ gcry_mpi_t y_2, y2;
+ mpi_ec_t ctx = NULL;
+
+ point_init (&Q);
/* ?primarity test of 'p' */
/* (...) //!! */
/* G in E(F_p) */
y_2 = gen_y_2 (sk->E.G.x, &sk->E); /* y^2=x^3+a*x+b */
+ y2 = mpi_alloc (0);
mpi_mulm (y2, sk->E.G.y, sk->E.G.y, sk->E.p); /* y^2=y*y */
if (mpi_cmp (y_2, y2))
{
if (DBG_CIPHER)
log_debug ("Bad check: Point 'G' does not belong to curve 'E'!\n");
- return (1);
+ goto leave;
}
/* G != PaI */
if (!mpi_cmp_ui (sk->E.G.z, 0))
{
if (DBG_CIPHER)
log_debug ("Bad check: 'G' cannot be Point at Infinity!\n");
- return (1);
+ goto leave;
}
- point_init (&Q);
ctx = _gcry_mpi_ec_init (sk->E.p, sk->E.a);
+
_gcry_mpi_ec_mul_point (&Q, sk->E.n, &sk->E.G, ctx);
if (mpi_cmp_ui (Q.z, 0))
{
if (DBG_CIPHER)
log_debug ("check_secret_key: E is not a curve of order n\n");
- point_free (&Q);
- _gcry_mpi_ec_free (ctx);
- return 1;
+ goto leave;
}
/* pubkey cannot be PaI */
if (!mpi_cmp_ui (sk->Q.z, 0))
{
if (DBG_CIPHER)
log_debug ("Bad check: Q can not be a Point at Infinity!\n");
- _gcry_mpi_ec_free (ctx);
- return (1);
+ goto leave;
}
/* pubkey = [d]G over E */
_gcry_mpi_ec_mul_point (&Q, sk->d, &sk->E.G, ctx);
@@ -696,12 +697,16 @@ check_secret_key (ECC_secret_key * sk)
if (DBG_CIPHER)
log_debug
("Bad check: There is NO correspondence between 'd' and 'Q'!\n");
- _gcry_mpi_ec_free (ctx);
- return (1);
+ goto leave;
}
+ rc = 0; /* Okay. */
+
+ leave:
_gcry_mpi_ec_free (ctx);
+ mpi_free (y2);
+ mpi_free (y_2);
point_free (&Q);
- return 0;
+ return rc;
}
-----------------------------------------------------------------------
Summary of changes:
cipher/ecc.c | 31 ++++++++++++++++++-------------
1 files changed, 18 insertions(+), 13 deletions(-)
hooks/post-receive
--
The GNU crypto library
http://git.gnupg.org
More information about the Gnupg-commits
mailing list