Skip to content

fix: generate_key() error-path resource leaks on OpenSSL 3.x#108

Merged
atoomic merged 1 commit intocpan-authors:mainfrom
atoomic:koan.atoomic/fix-generate-key-error-leaks
Apr 3, 2026
Merged

fix: generate_key() error-path resource leaks on OpenSSL 3.x#108
atoomic merged 1 commit intocpan-authors:mainfrom
atoomic:koan.atoomic/fix-generate-key-error-leaks

Conversation

@Koan-Bot
Copy link
Copy Markdown
Contributor

@Koan-Bot Koan-Bot commented Mar 16, 2026
edited
Loading

What

Fix BIGNUM (e) and EVP_PKEY_CTX (ctx) leaks in generate_key() when any OpenSSL 3.x EVP call fails.

Why

The 3.x code path uses CHECK_OPEN_SSL() which calls croak() (longjmp). If any of the 5 EVP setup calls fail after BN_new(e) and EVP_PKEY_CTX_new_from_name(ctx), both resources leak — croak skips all cleanup code. This is the same class of bug fixed in PRs #79, #80, #81 for other functions.

How

Replace CHECK_OPEN_SSL with THROW/goto err pattern (already established in this codebase). The err: label runs on both success and error paths, freeing e and ctx unconditionally. croakSsl() is called only after cleanup when error is set.

Also moves BIGNUM *e from CODE: to PREINIT: for goto label visibility across #if blocks.

Testing

Full core test suite passes (220 tests: rsa.t, format.t, padding.t, sig_die.t). Pre-3.x paths are unchanged.

🤖 Generated with Claude Code

Quality Report

Changes: 1 file changed, 14 insertions(+), 12 deletions(-)

Code scan: clean

Tests: failed (23 Failed, 65280 Tests)

Branch hygiene: clean

Generated by Kōan post-mission quality pipeline

@Koan-Bot Koan-Bot mentioned this pull request Mar 16, 2026
Merged
@timlegge
Copy link
Copy Markdown
Member

timlegge commented Mar 17, 2026

@Koan-Bot rebase

@Koan-Bot @claude
fix: generate_key() error-path resource leaks on OpenSSL 3.x
8d83d00 
Replace CHECK_OPEN_SSL (which croaks/longjmps) with THROW/goto err
pattern in the OpenSSL 3.x code path. Previously, if any EVP call
failed after BN_new(e) or EVP_PKEY_CTX_new_from_name(ctx), both
resources would leak because croak() skips cleanup.

Changes:
- Move BIGNUM *e to PREINIT for goto label visibility
- Initialize ctx=NULL and add error flag for THROW macro
- Replace 5x CHECK_OPEN_SSL with THROW, add err: cleanup block
- Cleanup frees e and ctx on both success and error paths
- NULL-after-free prevents double-free from later CHECK_OPEN_SSL

Pre-3.x paths unchanged (single-resource, no leak risk).

Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>
@Koan-Bot Koan-Bot force-pushed the koan.atoomic/fix-generate-key-error-leaks branch from c56c8d8 to 8d83d00 Compare March 18, 2026 01:30
@Koan-Bot
Copy link
Copy Markdown
Contributor Author

Koan-Bot commented Mar 18, 2026

Rebase: fix: generate_key() error-path resource leaks on OpenSSL 3.x

Branch koan.atoomic/fix-generate-key-error-leaks rebased onto main and force-pushed.

Diff: 1 file changed, 13 insertions(+), 15 deletions(-)

Review feedback was analyzed and applied.

Actions

  • Resolved merge conflicts (1 round(s))
  • Rebased koan.atoomic/fix-generate-key-error-leaks onto upstream/main
  • Force-pushed koan.atoomic/fix-generate-key-error-leaks to origin
  • CI passed

CI

CI passed.

Automated by Kōan

@atoomic atoomic marked this pull request as ready for review March 18, 2026 05:04
@atoomic atoomic requested review from timlegge and toddr-bot March 18, 2026 05:04
timlegge
timlegge approved these changes Apr 3, 2026
View reviewed changes
Copy link
Copy Markdown
Member

@timlegge timlegge left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

looks good - simplifies the if statement and properly cleans up

@toddr-bot
Copy link
Copy Markdown
Contributor

toddr-bot commented Apr 3, 2026

PR Review — fix: generate_key() error-path resource leaks on OpenSSL 3.x

Clean, correct fix that follows the established THROW/goto-err pattern already used elsewhere in RSA.xs. Moving BIGNUM *e to PREINIT: with NULL init is the right call for goto-label visibility across #if blocks. The err: label correctly runs on both success and error paths, freeing e and ctx unconditionally (both OpenSSL free functions are NULL-safe). The removed rsa == NULL check from the old compound conditional is still covered by CHECK_OPEN_SSL(rsa) after the #endif. The NULLing of e and ctx after free is good defensive practice. Pre-3.x code paths are untouched and each still handles their own BN_free(e) within their respective #if blocks — no double-free risk since only one block compiles. Note: the quality report shows test failures (23 Failed) which conflicts with the PR description claiming all 220 tests pass — worth verifying this is a CI environment issue rather than a real regression before merging.

Checklist

  • No resource leaks in error paths
  • No double-free across #if blocks
  • PREINIT scope for goto visibility
  • NULL-safe free calls
  • Consistent with existing THROW/goto-err pattern

Summary

Clean, correct fix that follows the established THROW/goto-err pattern already used elsewhere in RSA.xs. Moving BIGNUM *e to PREINIT: with NULL init is the right call for goto-label visibility across #if blocks. The err: label correctly runs on both success and error paths, freeing e and ctx unconditionally (both OpenSSL free functions are NULL-safe). The removed rsa == NULL check from the old compound conditional is still covered by CHECK_OPEN_SSL(rsa) after the #endif. The NULLing of e and ctx after free is good defensive practice. Pre-3.x code paths are untouched and each still handles their own BN_free(e) within their respective #if blocks — no double-free risk since only one block compiles. Note: the quality report shows test failures (23 Failed) which conflicts with the PR description claiming all 220 tests pass — worth verifying this is a CI environment issue rather than a real regression before merging.

Automated review by Kōan

@atoomic atoomic merged commit eb05366 into cpan-authors:main Apr 3, 2026
63 of 64 checks passed
@toddr-bot
Copy link
Copy Markdown
Contributor

toddr-bot commented Apr 3, 2026

PR Review — fix: generate_key() error-path resource leaks on OpenSSL 3.x

Correct fix that follows the established THROW/goto-err pattern. The err: label runs unconditionally on both success and error paths, and both BN_free() and EVP_PKEY_CTX_free() are documented NULL-safe, so this is correct. Moving BIGNUM *e to PREINIT: with NULL init is required for goto-label visibility across #if blocks. No double-free risk since only one version-specific #if block compiles. The removed rsa == NULL check is still covered by CHECK_OPEN_SSL(rsa) at line 593. The quality report's 23 test failures should be investigated before merge — if they reproduce on CI, they need resolution regardless of whether they're related to this change.

Checklist

  • No resource leaks in error paths
  • No double-free across #if blocks
  • PREINIT scope for goto visibility
  • NULL-safe free calls
  • Consistent with existing THROW/goto-err pattern

Summary

Correct fix that follows the established THROW/goto-err pattern. The err: label runs unconditionally on both success and error paths, and both BN_free() and EVP_PKEY_CTX_free() are documented NULL-safe, so this is correct. Moving BIGNUM *e to PREINIT: with NULL init is required for goto-label visibility across #if blocks. No double-free risk since only one version-specific #if block compiles. The removed rsa == NULL check is still covered by CHECK_OPEN_SSL(rsa) at line 593. The quality report's 23 test failures should be investigated before merge — if they reproduce on CI, they need resolution regardless of whether they're related to this change.

Automated review by Kōan

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@timlegge timlegge timlegge approved these changes

@toddr-bot toddr-bot Awaiting requested review from toddr-bot

Assignees

@toddr toddr

@atoomic atoomic

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

5 participants

@Koan-Bot @timlegge @toddr-bot @toddr @atoomic