package: don't leak signing key file fd

openssl BIO does not close the fd unless we explicitly tell it to do so.

package: don't leak signing key file fd
openssl BIO does not close the fd unless we explicitly tell it to do so.
fe55da70 · Timo Teräs · d9bf4aab · fe55da70
Commit fe55da70 authored May 26, 2010 by Timo Teräs
Hide whitespace changes
Inline Side-by-side

Showing with 1 addition and 1 deletion

src/package.c src/package.c +1 -1

No files found.
--- a/src/package.c
+++ b/src/package.c
@@ -441,7 +441,7 @@ int apk_sign_ctx_process_file(struct apk_sign_ctx *ctx,
 		if (fd < 0)
 			return 0;

-		bio  = BIO_new_fp(fdopen(fd, "r"), 0);
+		bio = BIO_new_fp(fdopen(fd, "r"), BIO_CLOSE);
 		ctx->signature.pkey = PEM_read_bio_PUBKEY(bio, NULL, NULL, NULL);
 		if (ctx->signature.pkey != NULL) {
 			if (fi->name[6] == 'R')