diff options
| author | Tom Cosgrove <tom@cvs.openbsd.org> | 2007-03-03 10:29:19 +0000 |
|---|---|---|
| committer | Tom Cosgrove <tom@cvs.openbsd.org> | 2007-03-03 10:29:19 +0000 |
| commit | 2ce42d5b5b4331975d7252f0f1b0e5415b2a7ef9 (patch) | |
| tree | 8be4372bdc41ccd31f00d365fcf3c910f919f4c2 /sbin | |
| parent | 8aa13f377bfcc2de052fb4966cde7365c842b516 (diff) | |
Make sure we can't accidentally free() a pointer that's been accepted
by message_add_payload(), since we are no longer responsible for it.
ok cloder@ hshoexer@ moritz@
Diffstat (limited to 'sbin')
| -rw-r--r-- | sbin/isakmpd/exchange.c | 9 |
1 files changed, 8 insertions, 1 deletions
diff --git a/sbin/isakmpd/exchange.c b/sbin/isakmpd/exchange.c index cfa54d7609d..f540bddd87a 100644 --- a/sbin/isakmpd/exchange.c +++ b/sbin/isakmpd/exchange.c @@ -1,4 +1,4 @@ -/* $OpenBSD: exchange.c,v 1.128 2006/09/01 00:24:06 mpf Exp $ */ +/* $OpenBSD: exchange.c,v 1.129 2007/03/03 10:29:18 tom Exp $ */ /* $EOM: exchange.c,v 1.143 2000/12/04 00:02:25 angelos Exp $ */ /* @@ -1662,6 +1662,13 @@ exchange_add_certs(struct message *msg) free(cert); return -1; } + /* + * We need to reset cert here, as it is now controlled by + * message_add_payload() (i.e. we must not free() it), and + * it is possible for the next iteration of the aca loop + * to fail early in cert_obtain before it writes to &cert. + */ + cert = NULL; } /* We dont need the CERT REQs any more, they are answered. */ |