Home Explore Help
Register Sign In
wareck
/
krackattacks
1
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Browse Source

TLS: Fix memory leak with multiple TLS server instances

When using CONFIG_TLS=internal and starting hostapd with multiple
configuration files that each initialize TLS server, the server
certificate and related data was not freed for all the interfaces on
exit path. Fix this by freeing the credential data that is stored
separately for each call to tls_init().

Signed-off-by: Jouni Malinen <j@w1.fi>
Jouni Malinen 9 years ago
parent
a63ebc159d
commit
2e38079531
1 changed files with 3 additions and 1 deletions
Unified View Show Diff Stats
  1. 3 1
      src/crypto/tls_internal.c

+ 3 - 1
src/crypto/tls_internal.c
View File 

@@ -64,10 +64,12 @@ void tls_deinit(void *ssl_ctx)
 
 		tlsv1_client_global_deinit();
 
 		tlsv1_client_global_deinit();
 
 #endif /* CONFIG_TLS_INTERNAL_CLIENT */
 
 #endif /* CONFIG_TLS_INTERNAL_CLIENT */
 
 #ifdef CONFIG_TLS_INTERNAL_SERVER
 
 #ifdef CONFIG_TLS_INTERNAL_SERVER
 
-		tlsv1_cred_free(global->server_cred);
 
 		tlsv1_server_global_deinit();
 
 		tlsv1_server_global_deinit();
 
 #endif /* CONFIG_TLS_INTERNAL_SERVER */
 
 #endif /* CONFIG_TLS_INTERNAL_SERVER */
 
 	}
 
 	}
 
+#ifdef CONFIG_TLS_INTERNAL_SERVER
 
+	tlsv1_cred_free(global->server_cred);
 
+#endif /* CONFIG_TLS_INTERNAL_SERVER */
 
 	os_free(global);
 
 	os_free(global);
 
 }
 
 }