Avoid leaking peername data via accept BIOs

author Viktor Dukhovni <openssl-users@dukhovni.org>

Fri, 9 Feb 2018 23:34:33 +0000 (18:34 -0500)

committer Viktor Dukhovni <openssl-users@dukhovni.org>

Sat, 10 Feb 2018 02:06:18 +0000 (21:06 -0500)
author Viktor Dukhovni <openssl-users@dukhovni.org>
Fri, 9 Feb 2018 23:34:33 +0000 (18:34 -0500)
committer Viktor Dukhovni <openssl-users@dukhovni.org>
Sat, 10 Feb 2018 02:06:18 +0000 (21:06 -0500)
diff --git a/crypto/bio/bss_acpt.c b/crypto/bio/bss_acpt.c

index e426ecd7fd7efd628e01415661677c22a56d7a47..72ad6a19a913ff300c406dce54c0b11283145b1f 100644 (file)
--- a/crypto/bio/bss_acpt.c
+++ b/crypto/bio/bss_acpt.c
@@ -275,6 +275,11 @@ static int acpt_state(BIO *b, BIO_ACCEPT *c)
              BIO_clear_retry_flags(b);
              b->retry_reason = 0;
  
+            OPENSSL_free(c->cache_peer_name);
+            c->cache_peer_name = NULL;
+            OPENSSL_free(c->cache_peer_serv);
+            c->cache_peer_serv = NULL;
+
              s = BIO_accept_ex(c->accept_sock, &c->cache_peer_addr,
                                c->accepted_mode);
author	Viktor Dukhovni <openssl-users@dukhovni.org>
	Fri, 9 Feb 2018 23:34:33 +0000 (18:34 -0500)
committer	Viktor Dukhovni <openssl-users@dukhovni.org>
	Sat, 10 Feb 2018 02:06:18 +0000 (21:06 -0500)