Gitiles
Code Review Sign In
git01.mediatek.com / haproxy / 8de5415b85512da871d58d1e9a0a33bd67f3b570
commit8de5415b85512da871d58d1e9a0a33bd67f3b570[log] [tgz]
authorRemi Gacogne <rgacogne[at]aquaray[dot]fr>Tue Jul 15 11:36:40 2014 +0200
committerWilly Tarreau <w@1wt.eu>Tue Jul 15 16:07:05 2014 +0200
tree43d8e66e1774b659e7f850bbc1c269622b4079ea
parente63a1eb290a1c407453dbcaa16535c85a1904f9e [diff]
BUG/MEDIUM: ssl: Fix a memory leak in DHE key exchange

OpenSSL does not free the DH * value returned by the callback specified with SSL_CTX_set_tmp_dh_callback(),
leading to a memory leak for SSL/TLS connections using Diffie Hellman Ephemeral key exchange.
This patch fixes the leak by allocating the DH * structs holding the DH parameters once, at configuration time.

Note: this fix must be backported to 1.5.
1 file changed
tree: 43d8e66e1774b659e7f850bbc1c269622b4079ea
  1. contrib/
  2. doc/
  3. ebtree/
  4. examples/
  5. include/
  6. src/
  7. tests/
  8. .gitignore
  9. CHANGELOG
  10. LICENSE
  11. Makefile
  12. README
  13. ROADMAP
  14. SUBVERS
  15. VERDATE
  16. VERSION