fix potential memory leak in daemon/remote.c and nullpointer dereference in

validator/autotrust. git-svn-id: file:///svn/unbound/trunk@3856 be551aaa-1e26-0410-a405-d3ace91eadb9
2026-01-05 22:39:35 -05:00 · 2016-09-15 08:39:59 +00:00 · 2016-09-15 08:39:59 +00:00 · e2e34ad273
commit e2e34ad273
parent 1fe24566ad
3 changed files with 8 additions and 0 deletions
--- a/daemon/remote.c
+++ b/daemon/remote.c
@ -245,6 +245,7 @@ daemon_remote_create(struct config_file* cfg)
 		/* No certificates are requested */
 		if(!SSL_CTX_set_cipher_list(rc->ctx, "aNULL")) {
 			log_crypto_err("Failed to set aNULL cipher list");
+			daemon_remote_delete(rc);
 			return NULL;
 		}

@ -253,6 +254,7 @@ daemon_remote_create(struct config_file* cfg)
 		 */
 		if(!SSL_CTX_set_tmp_dh(rc->ctx,get_dh2048())) {
 			log_crypto_err("Wanted to set DH param, but failed");
+			daemon_remote_delete(rc);
 			return NULL;
 		}
 		return rc;
--- a/doc/Changelog
+++ b/doc/Changelog
@ -1,3 +1,7 @@
+15 September 2016: Ralph
+	- fix potential memory leak in daemon/remote.c and nullpointer
+	  dereference in validator/autotrust.
+
 13 September 2016: Wouter
 	- Silenced flex-generated sign-unsigned warning print with gcc
 	  diagnostic pragma.
--- a/validator/autotrust.c
+++ b/validator/autotrust.c
@ -430,6 +430,8 @@ find_add_tp(struct val_anchors* anchors, uint8_t* rr, size_t rr_len,
 	}
 	tp = autr_tp_create(anchors, rr, dname_len, sldns_wirerr_get_class(rr,
 		rr_len, dname_len));
+	if(!tp)	
+		return NULL;
 	lock_basic_lock(&tp->lock);
 	return tp;
 }