]> git.ipfire.org Git - thirdparty/haproxy.git/commit
projects / thirdparty / haproxy.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: c17a5fa) | patch
BUG/MEDIUM: ssl: fix ssl_bind_conf double free
authorWilliam Lallemand <wlallemand@haproxy.com>
Tue, 23 Jun 2020 09:02:17 +0000 (11:02 +0200)
committerWilliam Lallemand <wlallemand@haproxy.org>
Tue, 23 Jun 2020 18:06:55 +0000 (20:06 +0200)
commit7df5c2dc3c32db8c844671fd22bd228816c001a2
tree1b9ba31398ee37ecb662845785dac947eddfaa54tree
parentc17a5fac5742060c591d65858616ac11cfb4f3c9commit | diff
BUG/MEDIUM: ssl: fix ssl_bind_conf double free

Since commit 2954c47 ("MEDIUM: ssl: allow crt-list caching"), the
ssl_bind_conf is allocated directly in the crt-list, and the crt-list
can be shared between several bind_conf. The deinit() code wasn't
changed to handle that.

This patch fixes the issue by removing the free of the ssl_conf in
ssl_sock_free_all_ctx().

It should be completed with a patch that free the ssl_conf and the
crt-list.

Fix issue #700.
include/haproxy/ssl_sock-t.h diff | blob | blame | history
src/ssl_sock.c diff | blob | blame | history
Mirror of https://github.com/haproxy/haproxy.git