Fix a memory leak in CONF .include handling

If OPENSSL_CONF_INCLUDE has been set then we may leak the "include" buffer. Reviewed-by: Tomas Mraz <tmraz@fedoraproject.org> (Merged from https://github.com/openssl/openssl/pull/11691)
2025-04-27 18:24:37 +00:00 · 2020-05-01 15:15:13 +01:00 · 2020-05-01 15:15:13 +01:00 · 15dd075f70
commit 15dd075f70
parent 6ed34b3eff
1 changed files with 3 additions and 6 deletions
--- a/crypto/conf/conf_def.c
+++ b/crypto/conf/conf_def.c
@ -420,6 +420,7 @@ static int def_load_bio(CONF *conf, BIO *in, long *line)
                    OPENSSL_strlcpy(include_path, include_dir, newlen);
                    OPENSSL_strlcat(include_path, "/", newlen);
                    OPENSSL_strlcat(include_path, include, newlen);
+                    OPENSSL_free(include);
                } else {
                    include_path = include;
                }
@ -429,15 +430,11 @@ static int def_load_bio(CONF *conf, BIO *in, long *line)
                next = process_include(include_path, &dirctx, &dirpath);
                if (include_path != dirpath) {
                    /* dirpath will contain include in case of a directory */
-                    OPENSSL_free(include);
-                    if (include_path != include)
-                        OPENSSL_free(include_path);
+                    OPENSSL_free(include_path);
                }
 #else
                next = BIO_new_file(include_path, "r");
-                OPENSSL_free(include);
-                if (include_path != include)
-                    OPENSSL_free(include_path);
+                OPENSSL_free(include_path);
 #endif

                if (next != NULL) {