Under low memory a crash was observed with openssl-1.0.2j: I think the reason is that pmeth->init fails in int_ctx_new or pmeth->copy fails in EVP_PKEY_CTX_dup due to OOM, calling pmeth->cleanup can crash. As a workaround set pmeth to zero before calling EVP_PKEY_CTX_free ...
Both of which iterate the list of registered methods, and invoke EVP_PKEY_meth_free() on each on of them. Only after OpenSSL freed these methods it calls the engine's destroy() method which allows the registered engine to do its own cleanup. int engine_free_util(ENGINE *e, int not_...
"%s",operation);do{if((pkey=EVP_PKEY_new())==NULL){LOG_ERROR(Tag,"[%s] new EVP_PKEY failed",operation);break;}// 导出公钥写入算法结构体if(exportPublicKey(TRUE,reinterpret_cast<unsignedchar*>(&pubKey),sizeof(pubKey
+ EVP_PKEY_free(pkey); + _cupsSetError(IPP_STATUS_ERROR_INTERNAL, _("Unable to create X.509 certificate."), 1); + return (0); + } + + curtime = time(NULL); + + notBefore = ASN1_TIME_new(); + ASN1_TIME_set(notBefore, curtime); + X509_set_notBefore(cert,...
Patch61: Pass-an-EVP_PKEY-for-SSL_SECOP_TMP_DH-in-the-securit.patch Patch62: Avoid-potential-doublefree-on-dh-object-assigned-to-.patch Patch63: Fix-AES-GCM-bug-on-aarch64-BigEndian.patch Patch64: crypto-poly1305-asm-fix-armv8-pointer-authentication.patch ...
A bug in the implementation of the SM2 decryption code means that the calculation of the buffer size required to hold the plaintext returned by the first call to EVP_PKEY_decrypt() can be smaller than the actual size required by the second call. This can lead to a buffer overflow when ...
Used as part of the TLS key establishment protocol EVP_PKEY_free() FIPS_drbg_free() FIPS_drbg_free() SSL_free(), SSL_clear() Table 10: CSP Table Oracle Linux 7 OpenSSL Cryptographic Module Security Policy Page 22 of 35 8.1 Random Number Generation The module employs the Deterministic ...
(libcrypto.so.3 + 0x1a1ca1) #4 0x00007f932d3a1d31 evp_pkey_public_check_combined (libcrypto.so.3 + 0x1a1d31) #5 0x00007f932d397943 EVP_PKEY_derive_set_peer_ex (libcrypto.so.3 + 0x197943) #6 0x00007f932df81b6b ssl_derive (libssl.so.3 + 0x28b6b) #7 0x00007f932dfce63...
Hi Team , I am running kamailio with latest tls and openssl 111j. I could see crash in during hand shake. What details i can provide you to validate this. Below is the backtrace of crash 0 0x00007fa403ae6c42 in EVP_EncryptUpdate () from ...
o Enhanced EVP interface. [1] The support for external crypto devices is currently a separate distribution. See the file README.ENGINE. Major changes between OpenSSL 0.9.5 and OpenSSL 0.9.5a [1 Apr 2000]: o Bug fixes for Win32, SuSE Linux, NeXTSTEP and FreeBSD 2.2.8 ...