[Openvpn-devel] Fix memory leak in SSL_CTX_use_certificate

Message ID	20180926192706.29460-1-steffan@karger.me
State	Accepted
Headers	show Return-Path: <openvpn-devel-bounces@lists.sourceforge.net> From: Steffan Karger <steffan@karger.me> To: openvpn-devel@lists.sourceforge.net Date: Wed, 26 Sep 2018 21:27:06 +0200 Message-Id: <20180926192706.29460-1-steffan@karger.me> RBL: Sender listed at http://www.dnswl.org/, no trust [209.85.208.67 listed in list.dnswl.org] -0.0 RCVD_IN_MSPIKE_H2 RBL: Average reputation (+2) [209.85.208.67 listed in wl.mailspike.net] -0.0 SPF_PASS SPF: sender matches SPF record -0.1 DKIM_VALID Message has at least one valid DKIM or DK signature 0.1 DKIM_SIGNED Message has a DKIM or DK signature, not necessarily valid -0.0 DKIMWL_WL_MED DKIMwl.org - Whitelisted Medium sender Subject: [Openvpn-devel] [PATCH] Fix memory leak in SSL_CTX_use_certificate Precedence: list MIME-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: 7bit Errors-To: openvpn-devel-bounces@lists.sourceforge.net X-getmail-retrieved-from-mailbox: Inbox
Series	[Openvpn-devel] Fix memory leak in SSL_CTX_use_certificate \| expand [Openvpn-devel] Fix memory leak in SSL_CTX_use_certificate

Message ID

20180926192706.29460-1-steffan@karger.me

State

Accepted

Headers

From: Steffan Karger <steffan@karger.me>
To: openvpn-devel@lists.sourceforge.net
Date: Wed, 26 Sep 2018 21:27:06 +0200
Message-Id: <20180926192706.29460-1-steffan@karger.me>
Subject: [Openvpn-devel] [PATCH] Fix memory leak in SSL_CTX_use_certificate
Precedence: list
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
Errors-To: openvpn-devel-bounces@lists.sourceforge.net

Series

[Openvpn-devel] Fix memory leak in SSL_CTX_use_certificate | expand

Commit Message

Steffan Karger Sept. 26, 2018, 9:27 a.m. UTC

Commit 98bfeeb4 introduced a memory leak in SSL_CTX_use_certificate by
removing the "if(x509) { ... }" bit while not changing the
"else if(x) {}" right after to an "if(x) {}".

Signed-off-by: Steffan Karger <steffan@karger.me>
---
 src/openvpn/ssl_openssl.c | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

Comments

Arne Schwabe Sept. 27, 2018, 6:39 a.m. UTC | #1

Am 26.09.18 um 21:27 schrieb Steffan Karger:
> Commit 98bfeeb4 introduced a memory leak in SSL_CTX_use_certificate by
> removing the "if(x509) { ... }" bit while not changing the
> "else if(x) {}" right after to an "if(x) {}".

Hmpf, I should have spotted that.

Acked-By: Arne Schwabe <arne@rfc2549.org>

Arne

Gert Doering Sept. 27, 2018, 7:51 a.m. UTC | #2

Your patch has been applied to the master branch.

commit 5544f47b0eb31e516aa8afbb68579e35e69cf7e7
Author: Steffan Karger
Date:   Wed Sep 26 21:27:06 2018 +0200

     Fix memory leak in SSL_CTX_use_certificate

     Signed-off-by: Steffan Karger <steffan@karger.me>
     Acked-by: Arne Schwabe <arne@rfc2549.org>
     Message-Id: <20180926192706.29460-1-steffan@karger.me>
     Signed-off-by: Gert Doering <gert@greenie.muc.de>


--
kind regards,

Gert Doering

diff --git a/src/openvpn/ssl_openssl.c b/src/openvpn/ssl_openssl.c
index d9bc9d74..fe4db604 100644
--- a/src/openvpn/ssl_openssl.c
+++ b/src/openvpn/ssl_openssl.c
@@ -855,7 +855,7 @@  end:
     {
         BIO_free(in);
     }
-    else if (x)
+    if (x)
     {
         X509_free(x);
     }

[Openvpn-devel] Fix memory leak in SSL_CTX_use_certificate

Commit Message

Comments

Patch