Fix modulewrapper memory leak

[justsmth]

Description of changes:

The RSADecryptionPrimitiveCRT function in the ACVP modulewrapper leaks 8 BIGNUMs on every call. RSA_new_private_key_large_e takes const BIGNUM* parameters and copies them internally, but the originals were never freed. RSASignaturePrimitive and RSADecryptionPrimitive had the same issue on their error paths (before RSA_set0_key takes ownership).

Under ASAN, LeakSanitizer reports these leaks to stderr when the modulewrapper exits. Since check_expected.go captures combined stdout+stderr, the leak output gets mixed into the ACVP test result, causing a mismatch against the expected output.

All three functions now use bssl::UniquePtr<BIGNUM> for automatic cleanup.

Testing:

Existing ACVP tests in the FIPS ASAN CI job should now pass.

By submitting this pull request, I confirm that my contribution is made under the terms of the Apache 2.0 license and the ISC license.

[codecov-commenter]

Codecov Report

✅ All modified and coverable lines are covered by tests.
✅ Project coverage is 78.15%. Comparing base (9124e2b) to head (e697aa2).

Additional details and impacted files

@@            Coverage Diff             @@
##             main    #3094      +/-   ##
==========================================
- Coverage   78.16%   78.15%   -0.02%     
==========================================
  Files         689      689              
  Lines      121628   121627       -1     
  Branches    16982    16982              
==========================================
- Hits        95074    95059      -15     
- Misses      25670    25684      +14     
  Partials      884      884              

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

🚀 New features to boost your workflow:

• ❄️ Test Analytics: Detect flaky tests, report on failures, and find test suite problems.

[sgmenda]

lgtm