RepoMirrors/haproxy
1
0
Fork 0
mirror of http://git.haproxy.org/git/haproxy.git/ synced 2025-04-11 03:31:36 +00:00
Code Issues Packages Projects Releases Wiki Activity

BUG/MINOR: ssl: Clear the ckch instance when deleting a crt-list line

Browse Source 
When deleting a crt-list line through a "del ssl crt-list" call on the
CLI, we ended up free'ing the corresponding ckch instances without fully
clearing their contents. It left some dangling references on other
objects because the attache SSL_CTX was not deleted, as well as all the
ex_data referenced by it (OCSP responses for instance).

This patch can be backported up to branch 2.4.
This commit is contained in:
Remi Tricot-Le Breton 2024-02-07 16:38:42 +01:00 committed by William Lallemand
parent 28e78a0a74
commit 23cab33b67
1 changed files with 1 additions and 1 deletions

2
src/ssl_crtlist.c
View File

@ -1530,7 +1530,7 @@ static int cli_parse_del_crtlist(char **args, char *payload, struct appctx *appc
LIST_DELETE(&link_ref->list);
free(link_ref);
}
free(inst);
ckch_inst_free(inst);
}
crtlist_free_filters(entry->filters);