lukechilds
/
node
mirror of https://github.com/lukechilds/node.git
1
0
Fork 0
Code Issues Projects Releases Wiki Activity
Browse Source

crypto: replace BIO_free with BIO_free_all 

From OpenSSL's documentation:

"If BIO_free() is called on a BIO chain it will only free one BIO
resulting in a memory leak."

and

"BIO_free_all() frees up an entire BIO chain, it does not halt if an
error occurs freeing up an individual BIO in the chain"
v0.11.0-release
Fedor Indutny 12 years ago
parent
7845918227
commit
68487a73f2
1 changed files with 18 additions and 18 deletions
Whitespace
Show all changes Ignore whitespace when comparing lines Ignore changes in amount of whitespace Ignore changes in whitespace at EOL
Unified View
Diff Options
Show Stats Download Patch File Download Diff File
  1. 36
      src/node_crypto.cc

36
src/node_crypto.cc
View File

@ -289,7 +289,7 @@ int SecureContext::NewSessionCallback(SSL* s, SSL_SESSION* sess) {
// Takes a string or buffer and loads it into a BIO. // Takes a string or buffer and loads it into a BIO.
// Caller responsible for BIO_free-ing the returned object. // Caller responsible for BIO_free_all-ing the returned object.
static BIO* LoadBIO (Handle<Value> v) { static BIO* LoadBIO (Handle<Value> v) {
BIO *bio = BIO_new(BIO_s_mem()); BIO *bio = BIO_new(BIO_s_mem());
if (!bio) return NULL; if (!bio) return NULL;
@ -308,7 +308,7 @@ static BIO* LoadBIO (Handle<Value> v) {
} }
if (r <= 0) { if (r <= 0) {
BIO_free(bio); BIO_free_all(bio);
return NULL; return NULL;
} }
@ -326,11 +326,11 @@ static X509* LoadX509 (Handle<Value> v) {
X509 * x509 = PEM_read_bio_X509(bio, NULL, NULL, NULL); X509 * x509 = PEM_read_bio_X509(bio, NULL, NULL, NULL);
if (!x509) { if (!x509) {
BIO_free(bio); BIO_free_all(bio);
return NULL; return NULL;
} }
BIO_free(bio); BIO_free_all(bio);
return x509; return x509;
} }
@ -357,7 +357,7 @@ Handle<Value> SecureContext::SetKey(const Arguments& args) {
len == 1 ? NULL : *passphrase); len == 1 ? NULL : *passphrase);
if (!key) { if (!key) {
BIO_free(bio); BIO_free_all(bio);
unsigned long err = ERR_get_error(); unsigned long err = ERR_get_error();
if (!err) { if (!err) {
return ThrowException(Exception::Error( return ThrowException(Exception::Error(
@ -368,7 +368,7 @@ Handle<Value> SecureContext::SetKey(const Arguments& args) {
SSL_CTX_use_PrivateKey(sc->ctx_, key); SSL_CTX_use_PrivateKey(sc->ctx_, key);
EVP_PKEY_free(key); EVP_PKEY_free(key);
BIO_free(bio); BIO_free_all(bio);
return True(); return True();
} }
@ -455,7 +455,7 @@ Handle<Value> SecureContext::SetCert(const Arguments& args) {
int rv = SSL_CTX_use_certificate_chain(sc->ctx_, bio); int rv = SSL_CTX_use_certificate_chain(sc->ctx_, bio);
BIO_free(bio); BIO_free_all(bio);
if (!rv) { if (!rv) {
unsigned long err = ERR_get_error(); unsigned long err = ERR_get_error();
@ -516,7 +516,7 @@ Handle<Value> SecureContext::AddCRL(const Arguments& args) {
X509_CRL *x509 = PEM_read_bio_X509_CRL(bio, NULL, NULL, NULL); X509_CRL *x509 = PEM_read_bio_X509_CRL(bio, NULL, NULL, NULL);
if (x509 == NULL) { if (x509 == NULL) {
BIO_free(bio); BIO_free_all(bio);
return False(); return False();
} }
@ -525,7 +525,7 @@ Handle<Value> SecureContext::AddCRL(const Arguments& args) {
X509_STORE_set_flags(sc->ca_store_, X509_V_FLAG_CRL_CHECK | X509_STORE_set_flags(sc->ca_store_, X509_V_FLAG_CRL_CHECK |
X509_V_FLAG_CRL_CHECK_ALL); X509_V_FLAG_CRL_CHECK_ALL);
BIO_free(bio); BIO_free_all(bio);
X509_CRL_free(x509); X509_CRL_free(x509);
return True(); return True();
@ -547,20 +547,20 @@ Handle<Value> SecureContext::AddRootCerts(const Arguments& args) {
BIO *bp = BIO_new(BIO_s_mem()); BIO *bp = BIO_new(BIO_s_mem());
if (!BIO_write(bp, root_certs[i], strlen(root_certs[i]))) { if (!BIO_write(bp, root_certs[i], strlen(root_certs[i]))) {
BIO_free(bp); BIO_free_all(bp);
return False(); return False();
} }
X509 *x509 = PEM_read_bio_X509(bp, NULL, NULL, NULL); X509 *x509 = PEM_read_bio_X509(bp, NULL, NULL, NULL);
if (x509 == NULL) { if (x509 == NULL) {
BIO_free(bp); BIO_free_all(bp);
return False(); return False();
} }
X509_STORE_add_cert(root_cert_store, x509); X509_STORE_add_cert(root_cert_store, x509);
BIO_free(bp); BIO_free_all(bp);
X509_free(x509); X509_free(x509);
} }
} }
@ -623,7 +623,7 @@ Handle<Value> SecureContext::SetSessionIdContext(const Arguments& args) {
ERR_print_errors(bio); ERR_print_errors(bio);
BIO_get_mem_ptr(bio, &mem); BIO_get_mem_ptr(bio, &mem);
message = String::New(mem->data, mem->length); message = String::New(mem->data, mem->length);
BIO_free(bio); BIO_free_all(bio);
} else { } else {
message = String::New("SSL_CTX_set_session_id_context error"); message = String::New("SSL_CTX_set_session_id_context error");
} }
@ -670,7 +670,7 @@ Handle<Value> SecureContext::LoadPKCS12(const Arguments& args) {
int passlen = Buffer::Length(args[1]); int passlen = Buffer::Length(args[1]);
if (passlen < 0) { if (passlen < 0) {
BIO_free(in); BIO_free_all(in);
return ThrowException(Exception::TypeError( return ThrowException(Exception::TypeError(
String::New("Bad password"))); String::New("Bad password")));
} }
@ -705,7 +705,7 @@ Handle<Value> SecureContext::LoadPKCS12(const Arguments& args) {
} }
PKCS12_free(p12); PKCS12_free(p12);
BIO_free(in); BIO_free_all(in);
delete[] pass; delete[] pass;
if (!ret) { if (!ret) {
@ -944,7 +944,7 @@ int Connection::HandleSSLError(const char* func, int rv, ZeroStatus zs) {
BIO_get_mem_ptr(bio, &mem); BIO_get_mem_ptr(bio, &mem);
Local<Value> e = Exception::Error(String::New(mem->data, mem->length)); Local<Value> e = Exception::Error(String::New(mem->data, mem->length));
handle_->Set(String::New("error"), e); handle_->Set(String::New("error"), e);
BIO_free(bio); BIO_free_all(bio);
} }
return rv; return rv;
@ -1571,7 +1571,7 @@ Handle<Value> Connection::GetPeerCertificate(const Arguments& args) {
ASN1_TIME_print(bio, X509_get_notAfter(peer_cert)); ASN1_TIME_print(bio, X509_get_notAfter(peer_cert));
BIO_get_mem_ptr(bio, &mem); BIO_get_mem_ptr(bio, &mem);
info->Set(valid_to_symbol, String::New(mem->data, mem->length)); info->Set(valid_to_symbol, String::New(mem->data, mem->length));
BIO_free(bio); BIO_free_all(bio);
unsigned int md_size, i; unsigned int md_size, i;
unsigned char md[EVP_MAX_MD_SIZE]; unsigned char md[EVP_MAX_MD_SIZE];
@ -2626,7 +2626,7 @@ bool Sign::SignFinal(unsigned char** md_value,
EVP_MD_CTX_cleanup(&mdctx_); EVP_MD_CTX_cleanup(&mdctx_);
initialised_ = false; initialised_ = false;
EVP_PKEY_free(pkey); EVP_PKEY_free(pkey);
BIO_free(bp); BIO_free_all(bp);
return true; return true;
} }

Write Preview
Loading…
Cancel
Save