SSL memory bug?

Fasih faskiri.devel at gmail.com
Mon Sep 29 08:33:08 UTC 2014


Hi

I was looking at ngx_event_openssl.c, when I saw this.

      if (SSL_CTX_set_ex_data(ssl->ctx, ngx_ssl_certificate_index, x509)
          == 0)
      {
          ngx_ssl_error(NGX_LOG_EMERG, ssl->log, 0,
                        "SSL_CTX_set_ex_data() failed");
          X509_free(x509);
          BIO_free(bio);
          return NGX_ERROR;
      }

      X509_free(x509);


We just free the memory that is then used in

ngx_ssl_session_id_context (introduced in 1.6.2). I havent tried to
repro the error, but looks like a bug to me. PFA a suggested patch.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: patch
Type: application/octet-stream
Size: 586 bytes
Desc: not available
URL: <http://mailman.nginx.org/pipermail/nginx-devel/attachments/20140929/b07e34a1/attachment.obj>


More information about the nginx-devel mailing list