BUG/MINOR: ssl: memory leak when trying to load a directory with ca-file This patch fixes a memory leak of the ca structure when trying to load a directory with the ca-file directive. No backport needed.

commit: 4cfbf3c014cf013542533d46b21ccc518ad8866c [log] [tgz]
author: William Lallemand <wlallemand@haproxy.org> Tue Apr 26 15:57:33 2022 +0200
committer: William Lallemand <wlallemand@haproxy.org> Tue Apr 26 16:15:23 2022 +0200
tree: af7fae4b896b71741d872d2e8c2d6f4693a9155b
parent: b0c4827c2f0332910cb459cd9898da5c392f8f36 [diff]
diff --git a/src/ssl_ckch.c b/src/ssl_ckch.c
index 589e691..447fdbb 100644
--- a/src/ssl_ckch.c
+++ b/src/ssl_ckch.c

@@ -1168,11 +1168,13 @@
 				if (X509_STORE_add_cert(store, ca) == 0)
 					goto scandir_err;
 
+				X509_free(ca);
 				BIO_free(in);
 				free(de);
 				continue;
 
 scandir_err:
+				X509_free(ca);
 				BIO_free(in);
 				free(de);
 				ha_warning("ca-file: '%s' couldn't load '%s'\n", path, trash.area);
commit	4cfbf3c014cf013542533d46b21ccc518ad8866c	[log] [tgz]
author	William Lallemand <wlallemand@haproxy.org>	Tue Apr 26 15:57:33 2022 +0200
committer	William Lallemand <wlallemand@haproxy.org>	Tue Apr 26 16:15:23 2022 +0200
tree	af7fae4b896b71741d872d2e8c2d6f4693a9155b
parent	b0c4827c2f0332910cb459cd9898da5c392f8f36 [diff]