- Fix #1415: patch to free dnscrypt environment on reload.

git-svn-id: file:///svn/unbound/trunk@4310 be551aaa-1e26-0410-a405-d3ace91eadb9
2025-12-20 23:00:56 -05:00 · 2017-08-28 07:49:42 +00:00 · 2017-08-28 07:49:42 +00:00 · 80f310e2a4
commit 80f310e2a4
parent ffc2f687cf
4 changed files with 29 additions and 3 deletions
--- a/daemon/daemon.c
+++ b/daemon/daemon.c
@ -692,6 +692,9 @@ daemon_cleanup(struct daemon* daemon)
 	daemon->num = 0;
 #ifdef USE_DNSTAP
 	dt_delete(daemon->dtenv);
+#endif
+#ifdef USE_DNSCRYPT
+	dnsc_delete(daemon->dnscenv);
 #endif
 	daemon->cfg = NULL;
 }
--- a/dnscrypt/dnscrypt.c
+++ b/dnscrypt/dnscrypt.c
@ -450,6 +450,7 @@ dnsc_load_local_data(struct dnsc_env* dnscenv, struct config_file *cfg)
                snprintf(rr + strlen(rr), rrlen - 1 - strlen(rr), "\\%03d", c);
            }
        }
+        verbose(VERB_OPS, "DNSCrypt: adding local data to config: %s", rr);
        snprintf(rr + strlen(rr), rrlen - 1 - strlen(rr), "\"");
        cfg_strlist_insert(&cfg->local_data, strdup(rr));
        free(rr);
@ -649,3 +650,16 @@ dnsc_apply_cfg(struct dnsc_env *env, struct config_file *cfg)
 	}
 	return 0;
 }
+
+void
+dnsc_delete(struct dnsc_env *env)
+{
+	if(!env) {
+		return;
+	}
+	verbose(VERB_OPS, "DNSCrypt: Freeing environment.");
+	sodium_free(env->signed_certs);
+	sodium_free(env->certs);
+	sodium_free(env->keypairs);
+	free(env);
+}
--- a/dnscrypt/dnscrypt.h
+++ b/dnscrypt/dnscrypt.h
@ -52,7 +52,7 @@ typedef struct cert_ {

 struct dnsc_env {
 	struct SignedCert *signed_certs;
-    dnsccert *certs;
+	dnsccert *certs;
 	size_t signed_certs_count;
 	uint8_t provider_publickey[crypto_sign_ed25519_PUBLICKEYBYTES];
 	uint8_t provider_secretkey[crypto_sign_ed25519_SECRETKEYBYTES];
@ -71,7 +71,7 @@ struct dnscrypt_query_header {
 };

 /**
- * Initialize DNSCrypt enviroment.
+ * Initialize DNSCrypt environment.
 * Initialize sodium library and allocate the dnsc_env structure.
 * \return an uninitialized struct dnsc_env.
 */
@ -88,6 +88,12 @@ struct dnsc_env * dnsc_create(void);
 */
 int dnsc_apply_cfg(struct dnsc_env *env, struct config_file *cfg);

+/**
+ * Delete DNSCrypt environment
+ *
+ */
+void dnsc_delete(struct dnsc_env *env);
+
 /**
 * handle a crypted dnscrypt request.
 * Determine wether or not a query is coming over the dnscrypt listener and
--- a/doc/Changelog
+++ b/doc/Changelog
@ -1,3 +1,6 @@
+28 August 2017: Wouter
+	- Fix #1415: patch to free dnscrypt environment on reload.
+
 23 August 2017: Wouter
 	- Fix #1407: Add ECS options check to unbound-checkconf.
 	- make depend