BUG/MEDIUM: ssl: check OCSP calloc in ssl_sock_load_ocsp() Check the return of the calloc in ssl_sock_load_ocsp() which could lead to a NULL dereference. This was introduced by commit be2774d ("MEDIUM: ssl: Added support for Multi-Cert OCSP Stapling"). Could be backported as far as 1.7.

commit: a560c06af7d9ba68cb0e82d1d25652b9a6a5a336 [log] [tgz]
author: William Lallemand <wlallemand@haproxy.com> Fri Jul 31 11:43:20 2020 +0200
committer: William Lallemand <wlallemand@haproxy.org> Fri Jul 31 11:51:20 2020 +0200
tree: 27798950f849671aeccd1c4f346fce7dee4f2b09
parent: 6b79f38a7a0a5e24387658478edf14c9c9394d47 [diff]
diff --git a/src/ssl_sock.c b/src/ssl_sock.c
index 69f6835..f98c5c0 100644
--- a/src/ssl_sock.c
+++ b/src/ssl_sock.c

@@ -1342,9 +1342,13 @@
 	SSL_CTX_get_tlsext_status_cb(ctx, &callback);
 
 	if (!callback) {
-		struct ocsp_cbk_arg *cb_arg = calloc(1, sizeof(*cb_arg));
+		struct ocsp_cbk_arg *cb_arg;
 		EVP_PKEY *pkey;
 
+		cb_arg = calloc(1, sizeof(*cb_arg));
+		if (!cb_arg)
+			goto out;
+
 		cb_arg->is_single = 1;
 		cb_arg->s_ocsp = iocsp;
commit	a560c06af7d9ba68cb0e82d1d25652b9a6a5a336	[log] [tgz]
author	William Lallemand <wlallemand@haproxy.com>	Fri Jul 31 11:43:20 2020 +0200
committer	William Lallemand <wlallemand@haproxy.org>	Fri Jul 31 11:51:20 2020 +0200
tree	27798950f849671aeccd1c4f346fce7dee4f2b09
parent	6b79f38a7a0a5e24387658478edf14c9c9394d47 [diff]