Skip to content
Commit a0724ef1 authored by Viktor Dukhovni's avatar Viktor Dukhovni
Browse files

Better handling of verify param id peername field



Initialize pointers in param id by the book (explicit NULL assignment,
rather than just memset 0).

In x509_verify_param_zero() set peername to NULL after freeing it.

In x509_vfy.c's internal check_hosts(), avoid potential leak of
possibly already non-NULL peername.  This is only set when a check
succeeds, so don't need to do this repeatedly in the loop.

Reviewed-by: default avatarRichard Levitte <levitte@openssl.org>
parent 246b52f3
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment