Possible memory leak with RSA_private_encrypt?

Sun, 13 Jan 2008 00:33:28 -0800 

There is a good chance that I am doing something wrong.  However, the program 
below produces the following output from valgrind with OpenSSL v0.9.8g:

==12647== 1,032 bytes in 43 blocks are definitely lost in loss record 2 of 2
==12647==    at 0x4421846: malloc (vg_replace_malloc.c:149)
==12647==    by 0x4464FFD: default_malloc_ex (in /usr/lib/libcrypto.so.0.9.8)

Here is the program (replace keyFile with valid path to key):

#include <iostream>
#include <vector>

#include <cstdio>
#include <cstdlib>

#include <openssl/rsa.h>
#include <openssl/pem.h>
#include <openssl/engine.h>
#include <openssl/err.h>
#include <openssl/conf.h>


namespace {
    std::string keyFile = "/my/pem/key";
    const size_t PKCS1_PADDING_LENGTH = 11;
}


int
main(int argc, char *argv[])
{
    //
    // Open key file.
    //

    std::FILE* file = std::fopen(keyFile.c_str(), "r");

    if (NULL == file) {
        std::cerr << "Could not open key file" << std::endl;
        std::exit(1);
    }

    //
    // Read in private key.
    //

    RSA* privKey = PEM_read_RSAPrivateKey(file, NULL, NULL, (void*)"");

    std::fclose(file);

    if (NULL == privKey) {
        std::cerr << "Could not read private key" << std::endl;
        std::exit(1);
    }

    //
    // Create test data.
    //

    std::vector<unsigned char> data;

    for (int i = 0; i < 5000; i++) {
        data.push_back(i % 256);
    }

    //
    // Encrypt test data.
    //

    int outputBlockSize = RSA_size(privKey);
    int inputBlockSize = outputBlockSize - PKCS1_PADDING_LENGTH;

    std::vector<unsigned char> encryptedData;
    std::vector<unsigned char> tempEncryptedData(outputBlockSize);

    for (size_t i = 0; i < data.size(); i += inputBlockSize) {
        int bytesLeft = data.size() - i;
        int bytesToEncrypt =
            bytesLeft > inputBlockSize ? inputBlockSize : bytesLeft;

        int result = RSA_private_encrypt(bytesToEncrypt,
                                         &(data[i]),
                                         &(tempEncryptedData[0]),
                                         privKey,
                                         RSA_PKCS1_PADDING);

        if (result != outputBlockSize) {
            std::cerr << "Could not RSA encrypt authentication token."
                      << std::endl;
            std::exit(1);
        }

        encryptedData.insert(encryptedData.end(),
                             tempEncryptedData.begin(),
                             tempEncryptedData.end());
    }

    //
    // Free RSA key.
    //

    RSA_free(privKey);

    CONF_modules_unload(1);
    EVP_cleanup();
    ENGINE_cleanup();
    CRYPTO_cleanup_all_ex_data();
    ERR_remove_state(0);
    ERR_free_strings(); 

    std::cout << "Data encrypted" << std::endl;

    return 0;

} // main

Reply via email to