Plug a memory leak in OpenSSL's certificate verification callback.

This would affect fetchmail configurations running with SSL in daemon mode more than one-shot runs. Reported by Erik Thiele, and pinned by Dominik, Debian Bug #688015. This bug was introduced into fetchmail 6.2.9 (committed 2005-10-29) when support for subjectAltName was added through a patch by Roland Stigge, submitted as Debian Bug#201113.
author: Matthias Andree <matthias.andree@gmx.de> 2012-12-13 23:44:37 +0100
committer: Matthias Andree <matthias.andree@gmx.de> 2012-12-13 23:44:37 +0100
commit: 7ffec45913adc02a5c5f6a2cfe95a41d42ae535c (patch)
tree: 4964ef2ba7299b201f2285b987a8ed1870fadecb /socket.c
parent: edb8384a00f108b385d0df7ddfa5bd671a36f946 (diff)
download: fetchmail-7ffec45913adc02a5c5f6a2cfe95a41d42ae535c.tar.gz
fetchmail-7ffec45913adc02a5c5f6a2cfe95a41d42ae535c.tar.bz2
fetchmail-7ffec45913adc02a5c5f6a2cfe95a41d42ae535c.zip
1 files changed, 1 insertions, 1 deletions
diff --git a/socket.c b/socket.c
index 634b4760..3e4a3acd 100644
--- a/socket.c
+++ b/socket.c
@@ -689,7 +689,7 @@ static int SSL_verify_callback( int ok_return, X509_STORE_CTX *ctx, int strict )
 							}
 						}
 					}
-					sk_GENERAL_NAME_free(gens);
+					GENERAL_NAMES_free(gens);
 				}
 				if (name_match(p1, p2)) {
 					matched = 1;
author	Matthias Andree <matthias.andree@gmx.de>	2012-12-13 23:44:37 +0100
committer	Matthias Andree <matthias.andree@gmx.de>	2012-12-13 23:44:37 +0100
commit	7ffec45913adc02a5c5f6a2cfe95a41d42ae535c (patch)
tree	4964ef2ba7299b201f2285b987a8ed1870fadecb /socket.c
parent	edb8384a00f108b385d0df7ddfa5bd671a36f946 (diff)
download	fetchmail-7ffec45913adc02a5c5f6a2cfe95a41d42ae535c.tar.gz fetchmail-7ffec45913adc02a5c5f6a2cfe95a41d42ae535c.tar.bz2 fetchmail-7ffec45913adc02a5c5f6a2cfe95a41d42ae535c.zip