Address issues found by coverity

1) The MPI test for prime generation missed a return value check for a call to `mpi_shift_r`. This is neither critical nor new but should be fixed. 2) The RSA keygeneration example program contained code initializing an RSA context after a potentially failing call to CTR DRBG initialization, leaving the corresponding RSA context free call in the cleanup section orphaned. The commit fixes this by moving the initializtion of the RSA context prior to the first potentially failing call.
2024-11-22 18:35:42 +01:00 · 2018-01-10 11:24:43 +00:00 · 2018-01-10 11:24:43 +00:00 · 175668a8fd
commit 175668a8fd
parent 465c8b7827
2 changed files with 3 additions and 2 deletions
--- a/programs/pkey/rsa_genkey.c
+++ b/programs/pkey/rsa_genkey.c
@ -74,6 +74,7 @@ int main( void )
    fflush( stdout );

    entropy_init( &entropy );
+    rsa_init( &rsa, RSA_PKCS_V15, 0 );
    if( ( ret = ctr_drbg_init( &ctr_drbg, entropy_func, &entropy,
                               (const unsigned char *) pers,
                               strlen( pers ) ) ) != 0 )
@ -85,7 +86,6 @@ int main( void )
    polarssl_printf( " ok\n  . Generating the RSA key [ %d-bit ]...", KEY_SIZE );
    fflush( stdout );

-    rsa_init( &rsa, RSA_PKCS_V15, 0 );

    if( ( ret = rsa_gen_key( &rsa, ctr_drbg_random, &ctr_drbg, KEY_SIZE,
                             EXPONENT ) ) != 0 )
--- a/tests/suites/test_suite_mpi.function
+++ b/tests/suites/test_suite_mpi.function
@ -823,7 +823,8 @@ void mpi_gen_prime( int bits, int safe, int ref_ret )
        TEST_ASSERT( mpi_is_prime( &X, rnd_std_rand, NULL ) == 0 );
        if( safe )
        {
-            mpi_shift_r( &X, 1 ); /* X = ( X - 1 ) / 2 */
+            /* X = ( X - 1 ) / 2 */
+            TEST_ASSERT( mpi_shift_r( &X, 1 ) == 0 );
            TEST_ASSERT( mpi_is_prime( &X, rnd_std_rand, NULL ) == 0 );
        }
    }