Fix memory leak in php_openssl_pkey_from_zval()

Closes GH-16691.
2025-08-15 13:38:49 +02:00 · 2024-11-03 21:18:34 +01:00 · 2024-11-03 21:18:34 +01:00 · 994e866cf2
commit 994e866cf2
parent 2f4f09f7e6
3 changed files with 25 additions and 0 deletions
--- a/1
+++ b/1
@ -11,6 +11,7 @@ PHP                                                                        NEWS
 - OpenSSL:
  . Prevent unexpected array entry conversion when reading key. (nielsdos)
  . Fix various memory leaks related to openssl exports. (nielsdos)
+  . Fix memory leak in php_openssl_pkey_from_zval(). (nielsdos)

 - PDO:
  . Fixed memory leak of `setFetchMode()`. (SakiTakamachi)
--- a/ext/openssl/openssl.c
+++ b/ext/openssl/openssl.c
@ -3533,6 +3533,7 @@ static EVP_PKEY *php_openssl_pkey_from_zval(
 		} else {
 			ZVAL_COPY(&tmp, zphrase);
 			if (!try_convert_to_string(&tmp)) {
+				zval_ptr_dtor(&tmp);
 				return NULL;
 			}

--- a/ext/openssl/tests/php_openssl_pkey_from_zval_leak.phpt
+++ b/ext/openssl/tests/php_openssl_pkey_from_zval_leak.phpt
@ -0,0 +1,23 @@
+--TEST--
+php_openssl_pkey_from_zval memory leak
+--EXTENSIONS--
+openssl
+--FILE--
+<?php
+
+class StrFail {
+    public function __toString(): string {
+        throw new Error('create a leak');
+    }
+}
+
+$key = ["", new StrFail];
+try {
+    openssl_pkey_export_to_file($key, "doesnotmatter");
+} catch (Error $e) {
+    echo $e->getMessage(), "\n";
+}
+
+?>
+--EXPECT--
+create a leak