Hello--

In function X509_policy_tree_free (crypto/x509v3/pcy_tree.c:553 in current
CVS head), tree->auth_policies is freed using a simple free
on line 561. However, on the following line, tree->user_policies, which
is of the same type, is freed using a pop_free. In my test, it seems that
this leads to a memory leak.

I have included a patch this fixes this, against the latest cvs HEAD.

--Chris


--- crypto/x509v3/pcy_tree.c 7 Sep 2007 13:25:14 -0000
+++ crypto/x509v3/pcy_tree.c 11 Jul 2008 22:06:51 -0000
@@ -558,7 +558,7 @@
if (!tree)
return;

- sk_X509_POLICY_NODE_free(tree->auth_policies);
+ sk_X509_POLICY_NODE_pop_free(tree->auth_policies, exnode_free);
sk_X509_POLICY_NODE_pop_free(tree->user_policies, exnode_free);

for(i = 0, curr = tree->levels; i < tree->nlevel; i++, curr++)
__________________________________________________ ____________________
OpenSSL Project http://www.openssl.org
Development Mailing List openssl-dev@openssl.org
Automated List Manager majordomo@openssl.org