commit ab2815eaff6219ef57aedca2f7b1b72333c27fd0
author David Benjamin <davidben@chromium.org> Sun Nov 02 20:58:22 2014 -0500
committer Adam Langley <agl@google.com> Thu Nov 06 01:40:58 2014 +0000
tree e8980d45516df5d7201011ea9ba1fa8a27ad3634
parent 4aa86f1cdf4e1ad2589dca916761e9674a46f4a5

Fix leak in X509V3_EXT_add on error.

If it fails to be added to the list, the input should be freed. Found (sort of)
by scan-build; because of all the indirections and DYNAMIC flags, it doesn't
actually realize the leak's been fixed.

Change-Id: Idca10964e1ffb2ace1cea7f88d94693205d70d5b
Reviewed-on: https://boringssl-review.googlesource.com/2208
Reviewed-by: Adam Langley <agl@google.com>

crypto/x509v3/v3_lib.c

diff --git a/crypto/x509v3/v3_lib.c b/crypto/x509v3/v3_lib.c
index 0119b45..d4e4e78 100644
--- a/crypto/x509v3/v3_lib.c
+++ b/crypto/x509v3/v3_lib.c
@@ -79,10 +79,12 @@
 {
 	if(!ext_list && !(ext_list = sk_X509V3_EXT_METHOD_new(ext_stack_cmp))) {
 		OPENSSL_PUT_ERROR(X509V3, X509V3_EXT_add, ERR_R_MALLOC_FAILURE);
+		ext_list_free(ext);
 		return 0;
 	}
 	if(!sk_X509V3_EXT_METHOD_push(ext_list, ext)) {
 		OPENSSL_PUT_ERROR(X509V3, X509V3_EXT_add, ERR_R_MALLOC_FAILURE);
+		ext_list_free(ext);
 		return 0;
 	}
 	return 1;