From 2f5b0e176664d576603abc5cd6fd955c03d8dbdb Mon Sep 17 00:00:00 2001
From: Remi Gacogne <remi.gacogne@powerdns.com>
Date: Thu, 13 Jul 2017 16:22:30 +0200
Subject: [PATCH] Don't leak when the loading a public ECDSA key fails

---
 pdns/opensslsigners.cc | 1 +
 1 file changed, 1 insertion(+)

diff --git a/pdns/opensslsigners.cc b/pdns/opensslsigners.cc
index 97bab5eb5..051734aba 100644
--- a/pdns/opensslsigners.cc
+++ b/pdns/opensslsigners.cc
@@ -866,6 +866,7 @@ void OpenSSLECDSADNSCryptoKeyEngine::fromPublicKeyString(const std::string& inpu
 
   int ret = EC_POINT_oct2point(d_ecgroup, pub_key, (unsigned char*) ecdsaPoint.c_str(), ecdsaPoint.length(), d_ctx);
   if (ret != 1) {
+    EC_POINT_free(pub_key);
     throw runtime_error(getName()+" reading ECP point from binary failed");
   }
 
-- 
2.50.1