Release pkey_ctx on initialization failure

author irosay <59870261+irosay@users.noreply.github.com>

Fri, 10 May 2024 16:37:52 +0000 (17:37 +0100)

committer Tomas Mraz <tomas@openssl.org>

Tue, 14 May 2024 15:59:21 +0000 (17:59 +0200)
author irosay <59870261+irosay@users.noreply.github.com>
Fri, 10 May 2024 16:37:52 +0000 (17:37 +0100)
committer Tomas Mraz <tomas@openssl.org>
Tue, 14 May 2024 15:59:21 +0000 (17:59 +0200)
diff --git a/ssl/statem/statem_srvr.c b/ssl/statem/statem_srvr.c

index 8e493176f658ef4d486e1d1568e55be34af584a5..2afadcf2313999f91e86b2bee261cee7a3b41307 100644 (file)
--- a/ssl/statem/statem_srvr.c
+++ b/ssl/statem/statem_srvr.c
@@ -3134,7 +3134,7 @@ static int tls_process_cke_gost(SSL *s, PACKET *pkt)
      }
      if (EVP_PKEY_decrypt_init(pkey_ctx) <= 0) {
          SSLfatal(s, SSL_AD_INTERNAL_ERROR, ERR_R_INTERNAL_ERROR);
-        return 0;
+        goto err;
      }
      /*
       * If client certificate is present and is of the same type, maybe
author	irosay <59870261+irosay@users.noreply.github.com>
	Fri, 10 May 2024 16:37:52 +0000 (17:37 +0100)
committer	Tomas Mraz <tomas@openssl.org>
	Tue, 14 May 2024 15:59:21 +0000 (17:59 +0200)