BUG/MINOR: ssl: ssl_sock_load_ocsp_response_from_file memory leak "set ssl cert <filename.ocsp> <payload>" CLI command must free previous context. This patch should be backport to 2.1

commit: 0667faebcf55562d86c30af63f36fe86ba58fff9 [log] [tgz]
author: Emmanuel Hocdet <manu@gandi.net> Thu Jan 16 14:41:36 2020 +0100
committer: William Lallemand <wlallemand@haproxy.org> Tue Jan 21 10:44:33 2020 +0100
tree: cff56453ba66c9a6597af47a35cfacafa518e975
parent: ebf840bf370c07a98e06f99b396ddddbe5585bb5 [diff]
diff --git a/src/ssl_sock.c b/src/ssl_sock.c
index fd350f3..7d654bd 100644
--- a/src/ssl_sock.c
+++ b/src/ssl_sock.c

@@ -1106,7 +1106,12 @@
 		ocsp_response = NULL;
 		goto end;
 	}
-
+	/* no error, fill ckch with new context, old context must be free */
+	if (ckch->ocsp_response) {
+		free(ckch->ocsp_response->area);
+		ckch->ocsp_response->area = NULL;
+		free(ckch->ocsp_response);
+	}
 	ckch->ocsp_response = ocsp_response;
 	ret = 0;
 end:
commit	0667faebcf55562d86c30af63f36fe86ba58fff9	[log] [tgz]
author	Emmanuel Hocdet <manu@gandi.net>	Thu Jan 16 14:41:36 2020 +0100
committer	William Lallemand <wlallemand@haproxy.org>	Tue Jan 21 10:44:33 2020 +0100
tree	cff56453ba66c9a6597af47a35cfacafa518e975
parent	ebf840bf370c07a98e06f99b396ddddbe5585bb5 [diff]