From 0667faebcf55562d86c30af63f36fe86ba58fff9 Mon Sep 17 00:00:00 2001 From: Emmanuel Hocdet Date: Thu, 16 Jan 2020 14:41:36 +0100 Subject: [PATCH] BUG/MINOR: ssl: ssl_sock_load_ocsp_response_from_file memory leak "set ssl cert " CLI command must free previous context. This patch should be backport to 2.1 --- src/ssl_sock.c | 7 ++++++- 1 file changed, 6 insertions(+), 1 deletion(-) diff --git a/src/ssl_sock.c b/src/ssl_sock.c index fd350f39c..7d654bde8 100644 --- a/src/ssl_sock.c +++ b/src/ssl_sock.c @@ -1106,7 +1106,12 @@ static int ssl_sock_load_ocsp_response_from_file(const char *ocsp_path, char *bu ocsp_response = NULL; goto end; } - + /* no error, fill ckch with new context, old context must be free */ + if (ckch->ocsp_response) { + free(ckch->ocsp_response->area); + ckch->ocsp_response->area = NULL; + free(ckch->ocsp_response); + } ckch->ocsp_response = ocsp_response; ret = 0; end: