GH1537: Avoid double-free in the EVP_PKEY API

author Alex Gaynor <alex.gaynor@gmail.com>

Wed, 7 Sep 2016 13:41:20 +0000 (09:41 -0400)

committer Rich Salz <rsalz@openssl.org>

Wed, 7 Sep 2016 13:42:50 +0000 (09:42 -0400)
author Alex Gaynor <alex.gaynor@gmail.com>
Wed, 7 Sep 2016 13:41:20 +0000 (09:41 -0400)
committer Rich Salz <rsalz@openssl.org>
Wed, 7 Sep 2016 13:42:50 +0000 (09:42 -0400)
diff --git a/crypto/evp/p_lib.c b/crypto/evp/p_lib.c

index a4dcf581c7bbfcefb1239ab69bc87b1cd1f460dd..9828620552bef6c7dd0fb9fdba246a284074740a 100644 (file)
--- a/crypto/evp/p_lib.c
+++ b/crypto/evp/p_lib.c
@@ -398,6 +398,7 @@ void EVP_PKEY_free(EVP_PKEY *x)
          return;
      REF_ASSERT_ISNT(i < 0);
      EVP_PKEY_free_it(x);
+    CRYPTO_THREAD_lock_free(x->lock);
      sk_X509_ATTRIBUTE_pop_free(x->attributes, X509_ATTRIBUTE_free);
      OPENSSL_free(x);
  }
@@ -413,7 +414,6 @@ static void EVP_PKEY_free_it(EVP_PKEY *x)
      ENGINE_finish(x->engine);
      x->engine = NULL;
  #endif
-    CRYPTO_THREAD_lock_free(x->lock);
  }
  
  static int unsup_alg(BIO *out, const EVP_PKEY *pkey, int indent,
author	Alex Gaynor <alex.gaynor@gmail.com>
	Wed, 7 Sep 2016 13:41:20 +0000 (09:41 -0400)
committer	Rich Salz <rsalz@openssl.org>
	Wed, 7 Sep 2016 13:42:50 +0000 (09:42 -0400)