Avoid leaking peername data via accept BIOs

Reviewed-by: Rich Salz <rsalz@openssl.org>
2018-02-09 18:34:33 -05:00 · 2018-02-09 18:34:33 -05:00 · 4e0752535e
commit 4e0752535e
parent ebc20cfa74
1 changed files with 5 additions and 0 deletions
--- a/crypto/bio/bss_acpt.c
+++ b/crypto/bio/bss_acpt.c
@ -275,6 +275,11 @@ static int acpt_state(BIO *b, BIO_ACCEPT *c)
            BIO_clear_retry_flags(b);
            b->retry_reason = 0;

+            OPENSSL_free(c->cache_peer_name);
+            c->cache_peer_name = NULL;
+            OPENSSL_free(c->cache_peer_serv);
+            c->cache_peer_serv = NULL;
+
            s = BIO_accept_ex(c->accept_sock, &c->cache_peer_addr,
                              c->accepted_mode);