]> git.ipfire.org Git - thirdparty/haproxy.git/commit
projects / thirdparty / haproxy.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 28e78a0) | patch
BUG/MINOR: ssl: Clear the ckch instance when deleting a crt-list line
authorRemi Tricot-Le Breton <rlebreton@haproxy.com>
Wed, 7 Feb 2024 15:38:42 +0000 (16:38 +0100)
committerWilliam Lallemand <wlallemand@haproxy.com>
Wed, 7 Feb 2024 16:10:00 +0000 (17:10 +0100)
commit23cab33b67dd9dc76de936f47dfa23b1a8ee40e5
treeff3d83ae2194f1d44699c11e56721a59e2ef63b6tree
parent28e78a0a74e0b3007e0e01753bd6703c219f7adecommit | diff
BUG/MINOR: ssl: Clear the ckch instance when deleting a crt-list line

When deleting a crt-list line through a "del ssl crt-list" call on the
CLI, we ended up free'ing the corresponding ckch instances without fully
clearing their contents. It left some dangling references on other
objects because the attache SSL_CTX was not deleted, as well as all the
ex_data referenced by it (OCSP responses for instance).

This patch can be backported up to branch 2.4.
src/ssl_crtlist.c diff | blob | blame | history
Mirror of https://github.com/haproxy/haproxy.git