Gitiles
Code Review Sign In
git01.mediatek.com / haproxy / 60d7aeb6e1450995e721d01f48f60b7db4c44e2b
commit60d7aeb6e1450995e721d01f48f60b7db4c44e2b[log] [tgz]
authorRemi Gacogne <rgacogne[at]aquaray[dot]fr>Tue Jul 15 11:36:40 2014 +0200
committerWilly Tarreau <w@1wt.eu>Tue Jul 15 16:08:21 2014 +0200
tree1b664d7d6cd5fd744e613b6b746f0cd5f5fb2266
parentde9789b37466c37547d8c5d52d96a9d4466eb431 [diff]
BUG/MEDIUM: ssl: Fix a memory leak in DHE key exchange

OpenSSL does not free the DH * value returned by the callback specified with SSL_CTX_set_tmp_dh_callback(),
leading to a memory leak for SSL/TLS connections using Diffie Hellman Ephemeral key exchange.
This patch fixes the leak by allocating the DH * structs holding the DH parameters once, at configuration time.

Note: this fix must be backported to 1.5.
(cherry picked from commit 8de5415b85512da871d58d1e9a0a33bd67f3b570)
1 file changed
tree: 1b664d7d6cd5fd744e613b6b746f0cd5f5fb2266
  1. contrib/
  2. doc/
  3. ebtree/
  4. examples/
  5. include/
  6. src/
  7. tests/
  8. .gitignore
  9. CHANGELOG
  10. LICENSE
  11. Makefile
  12. README
  13. ROADMAP
  14. SUBVERS
  15. VERDATE
  16. VERSION