Don't leak memory from ERR_add_error_vdata()

author Matt Caswell <matt@openssl.org>

Mon, 28 Jan 2019 17:17:59 +0000 (17:17 +0000)

committer Matt Caswell <matt@openssl.org>

Tue, 29 Jan 2019 11:12:26 +0000 (11:12 +0000)
author Matt Caswell <matt@openssl.org>
Mon, 28 Jan 2019 17:17:59 +0000 (17:17 +0000)
committer Matt Caswell <matt@openssl.org>
Tue, 29 Jan 2019 11:12:26 +0000 (11:12 +0000)
diff --git a/crypto/err/err.c b/crypto/err/err.c

index 7bac6776c82fda5416087c454fe98d288972aac0..48d8cfabf242fa4dc407bccfe24e721aeffd711c 100644 (file)
--- a/crypto/err/err.c
+++ b/crypto/err/err.c
@@ -790,20 +790,31 @@ int ERR_get_next_error_library(void)
      return ret;
  }
  
-void ERR_set_error_data(char *data, int flags)
+static int err_set_error_data_int(char *data, int flags)
  {
      ERR_STATE *es;
      int i;
  
      es = ERR_get_state();
      if (es == NULL)
-        return;
+        return 0;
  
      i = es->top;
  
      err_clear_data(es, i);
      es->err_data[i] = data;
      es->err_data_flags[i] = flags;
+
+    return 1;
+}
+
+void ERR_set_error_data(char *data, int flags)
+{
+    /*
+     * This function is void so we cannot propagate the error return. Since it
+     * is also in the public API we can't change the return type.
+     */
+    err_set_error_data_int(data, flags);
  }
  
  void ERR_add_error_data(int num, ...)
@@ -843,7 +854,8 @@ void ERR_add_error_vdata(int num, va_list args)
          }
          OPENSSL_strlcat(str, a, (size_t)s + 1);
      }
-    ERR_set_error_data(str, ERR_TXT_MALLOCED | ERR_TXT_STRING);
+    if (!err_set_error_data_int(str, ERR_TXT_MALLOCED | ERR_TXT_STRING))
+        OPENSSL_free(str);
  }
  
  int ERR_set_mark(void)
author	Matt Caswell <matt@openssl.org>
	Mon, 28 Jan 2019 17:17:59 +0000 (17:17 +0000)
committer	Matt Caswell <matt@openssl.org>
	Tue, 29 Jan 2019 11:12:26 +0000 (11:12 +0000)