BUG/MINOR: ssl: Memory leak of AUTHORITY_KEYID struct when loading issuer When calling ssl_get0_issuer_chain, if akid is not NULL but its keyid is, then the AUTHORITY_KEYID is not freed. This patch can be backported to all stable branches.

commit: 1621dc1cc59cf99c8d5e02c0f300f1cd743cafa1 [log] [tgz]
author: Remi Tricot-Le Breton <rlebreton@haproxy.com> Thu Nov 03 15:16:48 2022 +0100
committer: William Lallemand <wlallemand@haproxy.org> Fri Nov 04 11:40:29 2022 +0100
tree: 2fe074c003d2ca33d9d6d035cba7065c8d3be59d
parent: a2c21db155f52089b9474e9a13a8b270f55301b7 [diff]
diff --git a/src/ssl_sock.c b/src/ssl_sock.c
index 2f76bb9..801405b 100644
--- a/src/ssl_sock.c
+++ b/src/ssl_sock.c

@@ -7231,8 +7231,8 @@
 				break;
 			}
 		}
-		AUTHORITY_KEYID_free(akid);
 	}
+	AUTHORITY_KEYID_free(akid);
 	return issuer;
 }
commit	1621dc1cc59cf99c8d5e02c0f300f1cd743cafa1	[log] [tgz]
author	Remi Tricot-Le Breton <rlebreton@haproxy.com>	Thu Nov 03 15:16:48 2022 +0100
committer	William Lallemand <wlallemand@haproxy.org>	Fri Nov 04 11:40:29 2022 +0100
tree	2fe074c003d2ca33d9d6d035cba7065c8d3be59d
parent	a2c21db155f52089b9474e9a13a8b270f55301b7 [diff]