From 47863dab6ae37bee44e40b6ab46fa04cdbffaf22 Mon Sep 17 00:00:00 2001
From: Mathias Hall-Andersen <mathias@hall-andersen.dk>
Date: Wed, 11 Feb 2026 12:38:35 +0100
Subject: [PATCH] frodo-kem: free OpenSSL EVP contexts after use

EVP_CIPHER_CTX and EVP_MD_CTX objects allocated during matrix
generation are never freed, leaking memory on every keygen,
encapsulation, and decapsulation.
---
 frodo-kem/src/hazmat/models.rs | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/frodo-kem/src/hazmat/models.rs b/frodo-kem/src/hazmat/models.rs
index 1e6e86c..c84cf91 100644
--- a/frodo-kem/src/hazmat/models.rs
+++ b/frodo-kem/src/hazmat/models.rs
@@ -987,6 +987,7 @@ impl<P: Params> Expanded for FrodoAes<P> {
             {
                 panic!("EVP_EncryptInit_ex failed");
             }
+            openssl_sys::EVP_CIPHER_CTX_free(aes_key_schedule);
         }
         #[cfg(target_endian = "big")]
         {
@@ -1114,6 +1115,7 @@ impl<P: Params> Expanded for FrodoShake<P> {
                 {
                     panic!("EVP_DigestFinalXOF failed");
                 }
+                openssl_sys::EVP_MD_CTX_free(shake);
             }
         }
         #[cfg(target_endian = "big")]