]> git.ipfire.org Git - thirdparty/haproxy.git/commitdiff
projects / thirdparty / haproxy.git / commitdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | patch | inline | side by side (parent: a2c21db)
BUG/MINOR: ssl: Memory leak of AUTHORITY_KEYID struct when loading issuer
authorRemi Tricot-Le Breton <rlebreton@haproxy.com>
Thu, 3 Nov 2022 14:16:48 +0000 (15:16 +0100)
committerWilliam Lallemand <wlallemand@haproxy.org>
Fri, 4 Nov 2022 10:40:29 +0000 (11:40 +0100)
When calling ssl_get0_issuer_chain, if akid is not NULL but its keyid
is, then the AUTHORITY_KEYID is not freed.

This patch can be backported to all stable branches.

src/ssl_sock.c patch | blob | blame | history

diff --git a/src/ssl_sock.c b/src/ssl_sock.c
index 2f76bb98669749add3eb61f9c03cb88a63099fb1..801405b309ae1c1b0fdf91aefd71384678ce4fb9 100644 (file)
--- a/src/ssl_sock.c
+++ b/src/ssl_sock.c
@@ -7231,8 +7231,8 @@ int ssl_load_global_issuer_from_BIO(BIO *in, char *fp, char **err)
                                break;
                        }
                }
-               AUTHORITY_KEYID_free(akid);
        }
+       AUTHORITY_KEYID_free(akid);
        return issuer;
 }
 
Mirror of https://github.com/haproxy/haproxy.git