]> git.ipfire.org Git - thirdparty/haproxy.git/commitdiff
projects / thirdparty / haproxy.git / commitdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | patch | inline | side by side (parent: 86df0e2)
BUG/MINOR: ssl: fix leak in ssl-f-use parser upon error
authorWilliam Lallemand <wlallemand@haproxy.com>
Mon, 16 Feb 2026 14:56:21 +0000 (15:56 +0100)
committerWilliam Lallemand <wlallemand@haproxy.com>
Mon, 16 Feb 2026 15:04:35 +0000 (16:04 +0100)
cfg_crt_node->filename is leaked on the error path in the ssl-f-use
configuration parser.

Could be backported as far as 3.2

src/cfgparse-ssl.c patch | blob | blame | history

diff --git a/src/cfgparse-ssl.c b/src/cfgparse-ssl.c
index a81f3efe1719a6cd644b183baf17a0fce0574b46..967b0519f1abf48ca2918249a5918aa3fa624806 100644 (file)
--- a/src/cfgparse-ssl.c
+++ b/src/cfgparse-ssl.c
@@ -2598,6 +2598,7 @@ error:
        free(err);
 
        list_for_each_entry_safe(n, r, &cur_crtlist, list) {
+               ha_free(&n->filename);
                ckch_conf_clean(n->ckch_conf);
                ha_free(&n->ckch_conf);
                ssl_sock_free_ssl_conf(n->ssl_conf);
Mirror of https://github.com/haproxy/haproxy.git