mirrors/haproxy
1
0
Fork 0
mirror of https://git.haproxy.org/git/haproxy.git/ synced 2025-09-24 07:11:20 +02:00
Code Issues Projects Releases Wiki Activity

BUG/MEDIUM: ssl: fix ssl_bind_conf double free w/ wildcards

Browse Source 
The fix 7df5c2d ("BUG/MEDIUM: ssl: fix ssl_bind_conf double free") was
not complete. The problem still occurs when using wildcards in
certificate, during the deinit.

This patch removes the free of the ssl_conf structure in
ssl_sock_free_all_ctx() since it's already done in the crtlist deinit.

It must be backported in 2.2.
This commit is contained in:
William Lallemand 2020-08-26 17:34:44 +02:00 committed by William Lallemand
parent cf1f193624
commit a78f3f0d79
1 changed files with 0 additions and 5 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

5
src/ssl_sock.c
View File

@ -5040,11 +5040,6 @@ void ssl_sock_free_all_ctx(struct bind_conf *bind_conf)
back = ebmb_next(node); back = ebmb_next(node);
ebmb_delete(node); ebmb_delete(node);
SSL_CTX_free(sni->ctx); SSL_CTX_free(sni->ctx);
if (!sni->order) { /* only free the SSL conf its first occurrence */
ssl_sock_free_ssl_conf(sni->conf);
free(sni->conf);
sni->conf = NULL;
}
LIST_DEL(&sni->by_ckch_inst); LIST_DEL(&sni->by_ckch_inst);
free(sni); free(sni);
node = back; node = back;