summaryrefslogtreecommitdiff
path: root/lib
diff options
context:
space:
mode:
authorTed Unangst <tedu@cvs.openbsd.org>2014-05-07 21:09:04 +0000
committerTed Unangst <tedu@cvs.openbsd.org>2014-05-07 21:09:04 +0000
commit8f946eb98423a3675e0d96d8a2ba5651c9e6685e (patch)
treee9d08737da439691c7c95a64dc11040add65bee4 /lib
parent868dbcafb7ad01f52326431baef8cfb514eb3285 (diff)
with the first bug it uncovered fixed, clear all bignums again.
i've never worked on codebase so resistant to efforts to improve it.
Diffstat (limited to 'lib')
-rw-r--r--lib/libcrypto/bn/bn_lib.c26
1 files changed, 9 insertions, 17 deletions
diff --git a/lib/libcrypto/bn/bn_lib.c b/lib/libcrypto/bn/bn_lib.c
index 6ec92826532..7ae14ee4d00 100644
--- a/lib/libcrypto/bn/bn_lib.c
+++ b/lib/libcrypto/bn/bn_lib.c
@@ -225,22 +225,11 @@ void BN_clear_free(BIGNUM *a)
free(a);
}
-void BN_free(BIGNUM *a)
- {
- if (a == NULL) return;
- bn_check_top(a);
- if ((a->d != NULL) && !(BN_get_flags(a,BN_FLG_STATIC_DATA)))
- free(a->d);
- if (a->flags & BN_FLG_MALLOCED)
- free(a);
- else
- {
-#ifndef OPENSSL_NO_DEPRECATED
- a->flags|=BN_FLG_FREE;
-#endif
- a->d = NULL;
- }
- }
+void
+BN_free(BIGNUM *a)
+{
+ BN_clear_free(a);
+}
void BN_init(BIGNUM *a)
{
@@ -399,7 +388,10 @@ BIGNUM *bn_expand2(BIGNUM *b, int words)
{
BN_ULONG *a = bn_expand_internal(b, words);
if(!a) return NULL;
- if(b->d) free(b->d);
+ if(b->d) {
+ OPENSSL_cleanse(b->d, b->dmax * sizeof(b->d[0]));
+ free(b->d);
+ }
b->d=a;
b->dmax=words;
}