Fix `EVP_KEYMGMT` leak in `evp_pkey_signature_init()` error paths

author Zijie Zhao <zijie4@illinois.edu>

Thu, 15 Jan 2026 21:04:49 +0000 (15:04 -0600)

committer Tomas Mraz <tomas@openssl.org>

Tue, 20 Jan 2026 19:01:11 +0000 (20:01 +0100)
author Zijie Zhao <zijie4@illinois.edu>
Thu, 15 Jan 2026 21:04:49 +0000 (15:04 -0600)
committer Tomas Mraz <tomas@openssl.org>
Tue, 20 Jan 2026 19:01:11 +0000 (20:01 +0100)
diff --git a/crypto/evp/signature.c b/crypto/evp/signature.c

index d742106a8a0c94fbb02c709879454f4cc02c9f4c..6314dc6dfadc8693d368a8610f632f1fd73aaf59 100644 (file)
--- a/crypto/evp/signature.c
+++ b/crypto/evp/signature.c
@@ -641,7 +641,8 @@ static int evp_pkey_signature_init(EVP_PKEY_CTX *ctx, EVP_SIGNATURE *signature,
                      break;
              if (*keytypes == NULL) {
                  ERR_raise(ERR_LIB_EVP, EVP_R_SIGNATURE_TYPE_AND_KEY_TYPE_INCOMPATIBLE);
-                return -2;
+                ret = -2;
+                goto end;
              }
          } else {
              /*
@@ -667,12 +668,13 @@ static int evp_pkey_signature_init(EVP_PKEY_CTX *ctx, EVP_SIGNATURE *signature,
              /* If none of the fallbacks helped, we're lost */
              if (!ok) {
                  ERR_raise(ERR_LIB_EVP, EVP_R_SIGNATURE_TYPE_AND_KEY_TYPE_INCOMPATIBLE);
-                return -2;
+                ret = -2;
+                goto end;
              }
          }
  
          if (!EVP_SIGNATURE_up_ref(signature))
-            return 0;
+            goto err;
      } else {
          /* Without a pre-fetched signature, it must be figured out somehow */
          ERR_set_mark();
author	Zijie Zhao <zijie4@illinois.edu>
	Thu, 15 Jan 2026 21:04:49 +0000 (15:04 -0600)
committer	Tomas Mraz <tomas@openssl.org>
	Tue, 20 Jan 2026 19:01:11 +0000 (20:01 +0100)