PHP :: Bug #54061 :: Memory leaks when openssl

Bug #54061	Memory leaks when openssl_encrypt called
Submitted:	2011-02-21 12:59 UTC	Modified:	2011-02-21 15:45 UTC
From:	dovbysh at gmail dot com	Assigned:	pajoye (profile)
Status:	Closed	Package:	OpenSSL related
PHP Version:	5.3SVN-2011-02-21 (snap)	OS:	Linux, Any
Private report:	No	CVE-ID:	None

View Developer Edit

Welcome back! If you're the original bug submitter, here's where you can edit the bug or add additional notes.
If you forgot your password, you can retrieve your password here.

Password:

Status:
Package:
Bug Type:
Summary:
From:	dovbysh at gmail dot com
New email:
PHP Version:		OS:

New Comment:

[2011-02-21 12:59 UTC] dovbysh at gmail dot com

Description:
------------
Related bug #54060, http://bugs.php.net/bug.php?id=54060
Memory leaks when I call openssl_decrypt. Test script shows that. I've watch at ext/openssl/openssl.c and according to http://www.openssl.org/docs/crypto/EVP_EncryptInit.html (see example at the bottom) you should free cipher_ctx.

<?php

$data = "jfdslkjvflsdkjvlkfjvlkjfvlkdm,4w 043920r 9234r 32904r 09243 r7-89437 r892374 r894372 r894 7289r7 f  frwerfh i iurf iuryw uyrfouiwy ruy 972439 8478942 yrhfjkdhls";
$pass = "r23498rui324hjbnkj";

$maxi = 200000;
$t = microtime(1);
for ($i=0;$i<$maxi; $i++){
	$cr = openssl_encrypt($data.$i, 'des3', $pass, false, '1qazxsw2');
	$dcr = openssl_decrypt($cr, 'des3', $pass, false, '1qazxsw2');
	if ($dcr != $data.$i){
		print "at step $i decryption failed\n";
	}
}
$t = microtime(1)-$t;
print "mode: openssl_encrypt ($maxi) tests takes ".$t."secs ".($maxi/$t)."#/sec \n";
?>

fixes by add this code at line 4818 at the end of openssl_decrypt:
	EVP_CIPHER_CTX_cleanup(&cipher_ctx);

Patches

Pull Requests

History

AllCommentsChangesGit/SVN commitsRelated reports

[2011-02-21 15:45 UTC] pajoye@php.net

-Status: Open +Status: Closed -Assigned To: +Assigned To: pajoye

[2011-02-21 15:45 UTC] pajoye@php.net

Fixed by http://svn.php.net/viewvc?view=revision&revision=308535

	php.net \| support \| documentation \| report a bug \| advanced search \| search howto \| statistics \| random bug \| login
go to bug id or search bugs for


Copyright © 2001-2024 The PHP Group All rights reserved.	Last updated: Thu Nov 21 11:01:29 2024 UTC