Applied and committed, both in the 0.9.8 and the 0.9.9-dev series.
Thanks!
> [EMAIL PROTECTED] - Tue Feb 06 10:47:58 2007]:
>
>
> This patch NULL's the "param" and "tree" pointers in the x509 store
> context to avoid double frees and other nasties if the
> X509_STORE_CTX_cleanup get's called twice...
>
> Since, I'm in the US I've already submitted the PATCH to the TSU
>
> --- openssl-0.9.8d.orig/crypto/x509/x509_vfy.c 2005-06-15
> 19:05:57.000000000 -0700
> +++ openssl-0.9.8d/crypto/x509/x509_vfy.c 2007-02-05
> 13:11:00.000000000 -0800
> @@ -1460,9 +1460,16 @@
> void X509_STORE_CTX_cleanup(X509_STORE_CTX *ctx)
> {
> if (ctx->cleanup) ctx->cleanup(ctx);
> - X509_VERIFY_PARAM_free(ctx->param);
> - if (ctx->tree)
> + if (ctx->param != NULL)
> + {
> + X509_VERIFY_PARAM_free(ctx->param);
> + ctx->param=NULL;
> + }
> + if (ctx->tree != NULL)
> + {
> X509_policy_tree_free(ctx->tree);
> + ctx->tree=NULL;
> + }
> if (ctx->chain != NULL)
> {
> sk_X509_pop_free(ctx->chain,X509_free);
>
>
>
--
Richard Levitte
[EMAIL PROTECTED]
______________________________________________________________________
OpenSSL Project http://www.openssl.org
Development Mailing List [email protected]
Automated List Manager [EMAIL PROTECTED]