Commit fe43346dc3151e80dae0acd751f0a94314dcb91c - nginx

SSL: fixed potential leak on memory allocation errors. If ngx_pool_cleanup_add() fails, we have to clean just created SSL context manually, thus appropriate call added. Additionally, ngx_pool_cleanup_add() moved closer to ngx_ssl_create() in the ngx_http_ssl_module, to make sure there are no leaks due to intermediate code. Maxim Dounin 3 years ago

7 changed file(s) with 15 addition(s) and 8 deletion(s). Raw diff Collapse all Expand all

-0

src/http/modules/ngx_http_grpc_module.c less more

4649	4649
4650	4650	cln = ngx_pool_cleanup_add(cf->pool, 0);
4651	4651	if (cln == NULL) {
	4652	ngx_ssl_cleanup_ctx(glcf->upstream.ssl);
4652	4653	return NGX_ERROR;
4653	4654	}
4654	4655

-0

src/http/modules/ngx_http_proxy_module.c less more

4269	4269
4270	4270	cln = ngx_pool_cleanup_add(cf->pool, 0);
4271	4271	if (cln == NULL) {
	4272	ngx_ssl_cleanup_ctx(plcf->upstream.ssl);
4272	4273	return NGX_ERROR;
4273	4274	}
4274	4275

-8

src/http/modules/ngx_http_ssl_module.c less more

699	699	return NGX_CONF_ERROR;
700	700	}
701	701
	702	cln = ngx_pool_cleanup_add(cf->pool, 0);
	703	if (cln == NULL) {
	704	ngx_ssl_cleanup_ctx(&conf->ssl);
	705	return NGX_CONF_ERROR;
	706	}
	707
	708	cln->handler = ngx_ssl_cleanup_ctx;
	709	cln->data = &conf->ssl;
	710
702	711	#ifdef SSL_CTRL_SET_TLSEXT_HOSTNAME
703	712
704	713	if (SSL_CTX_set_tlsext_servername_callback(conf->ssl.ctx,

721	730	SSL_CTX_set_next_protos_advertised_cb(conf->ssl.ctx,
722	731	ngx_http_ssl_npn_advertised, NULL);
723	732	#endif
724
725		cln = ngx_pool_cleanup_add(cf->pool, 0);
726		if (cln == NULL) {
727		return NGX_CONF_ERROR;
728		}
729
730		cln->handler = ngx_ssl_cleanup_ctx;
731		cln->data = &conf->ssl;
732	733
733	734	if (ngx_http_ssl_compile_certificates(cf, conf) != NGX_OK) {
734	735	return NGX_CONF_ERROR;

-0

src/http/modules/ngx_http_uwsgi_module.c less more

2358	2358
2359	2359	cln = ngx_pool_cleanup_add(cf->pool, 0);
2360	2360	if (cln == NULL) {
	2361	ngx_ssl_cleanup_ctx(uwcf->upstream.ssl);
2361	2362	return NGX_ERROR;
2362	2363	}
2363	2364

-0

src/mail/ngx_mail_ssl_module.c less more

369	369
370	370	cln = ngx_pool_cleanup_add(cf->pool, 0);
371	371	if (cln == NULL) {
	372	ngx_ssl_cleanup_ctx(&conf->ssl);
372	373	return NGX_CONF_ERROR;
373	374	}
374	375

-0

src/stream/ngx_stream_proxy_module.c less more

2095	2095
2096	2096	cln = ngx_pool_cleanup_add(cf->pool, 0);
2097	2097	if (cln == NULL) {
	2098	ngx_ssl_cleanup_ctx(pscf->ssl);
2098	2099	return NGX_ERROR;
2099	2100	}
2100	2101

-0

src/stream/ngx_stream_ssl_module.c less more

689	689
690	690	cln = ngx_pool_cleanup_add(cf->pool, 0);
691	691	if (cln == NULL) {
	692	ngx_ssl_cleanup_ctx(&conf->ssl);
692	693	return NGX_CONF_ERROR;
693	694	}
694	695