From 439d42b325019b06e6bd6f075afbd6fc17f4b244 Mon Sep 17 00:00:00 2001
From: Alex Stapleton <alexs@prol.etari.at>
Date: Sun, 16 Mar 2014 10:41:59 +0000
Subject: Just EVP_PKEY GC free the contained keys.

Fortunately we never use these bare.
---
 cryptography/hazmat/backends/openssl/backend.py | 7 +++++--
 1 file changed, 5 insertions(+), 2 deletions(-)

diff --git a/cryptography/hazmat/backends/openssl/backend.py b/cryptography/hazmat/backends/openssl/backend.py
index 27f0b6e3..3d00021b 100644
--- a/cryptography/hazmat/backends/openssl/backend.py
+++ b/cryptography/hazmat/backends/openssl/backend.py
@@ -345,9 +345,10 @@ class Backend(object):
         )
 
     def _rsa_cdata_from_private_key(self, private_key):
+        # Does not GC the RSA cdata. You *must* make sure it's freed
+        # correctly yourself!
         ctx = self._lib.RSA_new()
         assert ctx != self._ffi.NULL
-        ctx = self._ffi.gc(ctx, self._lib.RSA_free)
         ctx.p = self._int_to_bn(private_key.p)
         ctx.q = self._int_to_bn(private_key.q)
         ctx.d = self._int_to_bn(private_key.d)
@@ -359,9 +360,11 @@ class Backend(object):
         return ctx
 
     def _rsa_cdata_from_public_key(self, public_key):
+        # Does not GC the RSA cdata. You *must* make sure it's freed
+        # correctly yourself!
+
         ctx = self._lib.RSA_new()
         assert ctx != self._ffi.NULL
-        ctx = self._ffi.gc(ctx, self._lib.RSA_free)
         ctx.e = self._int_to_bn(public_key.e)
         ctx.n = self._int_to_bn(public_key.n)
         return ctx
-- 
cgit v1.2.3