Home Explore Help
Register Sign In
wareck
/
krackattacks
1
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Browse Source

OpenSSL: Fix memory leak on error path

If SSL_CTX_new() fails in tls_init(), the per-SSL app-data allocation
could have been leaked when multiple TLS instances are allocated.

Signed-hostap: Jouni Malinen <j@w1.fi>
Jouni Malinen 11 years ago
parent
6cb4f11dba
commit
a288da61b6
1 changed files with 4 additions and 2 deletions
Split View Show Diff Stats
  1. 4 2
      src/crypto/tls_openssl.c

+ 4 - 2
src/crypto/tls_openssl.c
View File 

@@ -784,11 +784,13 @@ void * tls_init(const struct tls_config *conf)
 
 	ssl = SSL_CTX_new(TLSv1_method());
 
 	if (ssl == NULL) {
 
 		tls_openssl_ref_count--;
 
+#ifdef OPENSSL_SUPPORTS_CTX_APP_DATA
 
+		if (context != tls_global)
 
+			os_free(context);
 
+#endif /* OPENSSL_SUPPORTS_CTX_APP_DATA */
 
 		if (tls_openssl_ref_count == 0) {
 
 			os_free(tls_global);
 
 			tls_global = NULL;
 
-		} else if (context != tls_global) {
 
-			os_free(context);
 
 		}
 
 		return NULL;
 
 	}