luo980/curl
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
11d27cf341
curl/lib/vtls
History
Fabian Keil a15342ddc0
wolfssl: plug memory leak in wolfssl_connect_step2() 
Fixes:

     test 2034...[simple HTTPS GET with DER public key pinning]
     ==61829== 22,610 (3,744 direct, 18,866 indirect) bytes in 1 blocks are definitely lost in loss record 51 of 54
     ==61829==    at 0x484BB74: malloc (vg_replace_malloc.c:446)
     ==61829==    by 0x4B53A80: wolfSSL_Malloc (memory.c:344)
     ==61829==    by 0x4C1C8E1: wolfSSL_X509_new (x509.c:5326)
     ==61829==    by 0x4C3977D: d2i_X509orX509REQ (x509.c:3628)
     ==61829==    by 0x4C1D1F4: wolfSSL_X509_d2i (x509.c:3664)
     ==61829==    by 0x4C1C37B: wolfSSL_X509_dup (x509.c:13425)
     ==61829==    by 0x4C197DB: wolfSSL_get_peer_certificate (ssl.c:18765)
     ==61829==    by 0x33297C: wolfssl_connect_step2 (wolfssl.c:875)
     ==61829==    by 0x331669: wolfssl_connect_common (wolfssl.c:1287)
     ==61829==    by 0x3303E9: wolfssl_connect_nonblocking (wolfssl.c:1319)
     ==61829==    by 0x32FE89: ssl_connect_nonblocking (vtls.c:510)
     ==61829==    by 0x32DBE5: ssl_cf_connect (vtls.c:1679)
     ==61829==    by 0x27ABD7: Curl_conn_cf_connect (cfilters.c:307)
     ==61829==    by 0x27D9CF: cf_setup_connect (connect.c:1199)
     ==61829==    by 0x27ABD7: Curl_conn_cf_connect (cfilters.c:307)
     ==61829==    by 0x283CEA: cf_hc_baller_connect (cf-https-connect.c:135)

Closes #13272
2024-04-04 08:56:43 +02:00
..
bearssl.c vtls: fix tls proxy peer verification 2024-02-16 18:00:21 -05:00
bearssl.h copyright: update all copyright lines and remove year ranges 2023-01-03 09:19:21 +01:00
gtls.c TLS: start shutdown only when peer did not already close 2024-03-15 09:19:58 +01:00
gtls.h vtls/vquic, keep peer name information together 2023-11-19 13:55:22 +01:00
hostcheck.c gskit: remove 2023-08-07 20:57:48 +02:00
hostcheck.h copyright: update all copyright lines and remove year ranges 2023-01-03 09:19:21 +01:00
keylog.c windows: use built-in _WIN32 macro to detect Windows 2023-11-22 15:42:25 +00:00
keylog.h copyright: update all copyright lines and remove year ranges 2023-01-03 09:19:21 +01:00
mbedtls_threadlock.c mbedtls: properly cleanup the thread-shared entropy 2024-03-12 03:09:37 -04:00
mbedtls_threadlock.h tidy-up: one comment and EOF newlines 2024-03-12 15:38:44 +00:00
mbedtls.c mbedtls: fix pytest for newer versions 2024-03-18 12:37:00 +01:00
mbedtls.h copyright: update all copyright lines and remove year ranges 2023-01-03 09:19:21 +01:00
openssl.c openssl: do not set SSL_MODE_RELEASE_BUFFERS 2024-03-28 08:48:51 +01:00
openssl.h vtls: consistently use typedef names for OpenSSL structs 2023-12-01 23:00:43 +01:00
rustls.c TLS: start shutdown only when peer did not already close 2024-03-15 09:19:58 +01:00
rustls.h copyright: update all copyright lines and remove year ranges 2023-01-03 09:19:21 +01:00
schannel_int.h schannel: add CA cache support for files and memory blobs 2023-11-11 04:11:11 -05:00
schannel_verify.c build: enable missing OpenSSF-recommended warnings, with fixes 2023-12-16 13:12:37 +00:00
schannel.c vtls: fix tls proxy peer verification 2024-02-16 18:00:21 -05:00
schannel.h build: do not publish HAVE_BORINGSSL, HAVE_AWSLC macros 2023-10-08 22:29:45 +00:00
sectransp.c vtls: fix tls proxy peer verification 2024-02-16 18:00:21 -05:00
sectransp.h copyright: update all copyright lines and remove year ranges 2023-01-03 09:19:21 +01:00
vtls_int.h TLS: start shutdown only when peer did not already close 2024-03-15 09:19:58 +01:00
vtls.c vtls: fix tls proxy peer verification 2024-02-16 18:00:21 -05:00
vtls.h vtls: remove the Curl_cft_ssl_proxy object if CURL_DISABLE_PROXY 2023-12-07 09:31:05 +01:00
wolfssl.c wolfssl: plug memory leak in wolfssl_connect_step2() 2024-04-04 08:56:43 +02:00
wolfssl.h copyright: update all copyright lines and remove year ranges 2023-01-03 09:19:21 +01:00
x509asn1.c x509asn1: switch from malloc to dynbuf 2024-01-27 12:27:35 +01:00
x509asn1.h gskit: remove 2023-08-07 20:57:48 +02:00