Coverity 1463830: Resource leaks (RESOURCE_LEAK)
authorPauli <paul.dale@oracle.com>
Sun, 24 May 2020 21:43:45 +0000 (07:43 +1000)
committerPauli <paul.dale@oracle.com>
Mon, 25 May 2020 22:25:02 +0000 (08:25 +1000)
Reviewed-by: Tim Hudson <tjh@openssl.org>
Reviewed-by: Bernd Edlinger <bernd.edlinger@hotmail.de>
(Merged from https://github.com/openssl/openssl/pull/11941)

(cherry picked from commit bbc3c22c0e2b3b4b6f069712dc8322a48506b775)

crypto/x509/x509_vfy.c

index 39e0c53de02664e4d3030792b25fc46bd5049d71..5bd3c4c159ffbf45e9b33426bd77d6ee1a6357df 100644 (file)
@@ -377,6 +377,7 @@ static STACK_OF(X509) *lookup_certs_sk(X509_STORE_CTX *ctx, X509_NAME *nm)
         x = sk_X509_value(ctx->other_ctx, i);
         if (X509_NAME_cmp(nm, X509_get_subject_name(x)) == 0) {
             if (!X509_up_ref(x)) {
+                sk_X509_pop_free(sk, X509_free);
                 X509err(X509_F_LOOKUP_CERTS_SK, ERR_R_INTERNAL_ERROR);
                 ctx->error = X509_V_ERR_UNSPECIFIED;
                 return NULL;