Skip to content

ts_conf: fix memory leak in TS_CONF_set_policies #28686

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Closed
wants to merge 1 commit into from
Closed

ts_conf: fix memory leak in TS_CONF_set_policies #28686

wants to merge 1 commit into from

Conversation

bleeqer
Copy link
Contributor

@bleeqer bleeqer commented Sep 29, 2025

TS_CONF_set_policies() allocated ASN1_OBJECTs via OBJ_txt2obj()
but did not free them after calling TS_RESP_CTX_add_policy().
Since TS_RESP_CTX_add_policy() duplicates the object internally,
the temporary ASN1_OBJECT must always be freed.

This patch ensures ASN1_OBJECT_free() is called on both success
and failure paths, preventing a per-policy memory leak.

Fixes #28628

@openssl-machine openssl-machine added the hold: cla required The contributor needs to submit a license agreement label Sep 29, 2025
@bleeqer bleeqer force-pushed the fix-ts-conf-policies-leak branch from 3c6358f to b5b7f92 Compare September 29, 2025 00:51
@bleeqer
Copy link
Contributor Author

bleeqer commented Sep 29, 2025

I’ve signed the CLA with this email (bleeqtheproducer@gmail.com). Please re-run the check.

paulidale
paulidale approved these changes Sep 29, 2025
View reviewed changes
Copy link
Contributor

@paulidale paulidale left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

CLAs are processed manually, so can take a little while.

jogme
jogme approved these changes Sep 29, 2025
View reviewed changes
Copy link
Contributor

@jogme jogme left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

thank you!

@t8m t8m closed this Sep 29, 2025
@t8m t8m reopened this Sep 29, 2025
@openssl-machine openssl-machine removed the hold: cla required The contributor needs to submit a license agreement label Sep 29, 2025
@t8m t8m added approval: done This pull request has the required number of approvals branch: master Merge to master branch triaged: bug The issue/pr is/fixes a bug branch: 3.0 Merge to openssl-3.0 branch tests: exempted The PR is exempt from requirements for testing branch: 3.2 Merge to openssl-3.2 branch: 3.3 Merge to openssl-3.3 branch: 3.4 Merge to openssl-3.4 branch: 3.5 Merge to openssl-3.5 branch: 3.6 Merge to openssl-3.6 labels Sep 29, 2025
@openssl-machine openssl-machine added approval: ready to merge The 24 hour grace period has passed, ready to merge and removed approval: done This pull request has the required number of approvals labels Sep 30, 2025
@openssl-machine
Copy link
Collaborator

This pull request is ready to merge

openssl-machine pushed a commit that referenced this pull request Oct 1, 2025
@bleeqer @t8m
ts_conf: fix memory leak in TS_CONF_set_policies
5b69b74 
Reviewed-by: Paul Dale <ppzgs1@gmail.com>
Reviewed-by: Tomas Mraz <tomas@openssl.org>
(Merged from #28686)

(cherry picked from commit 1f3a660)
openssl-machine pushed a commit that referenced this pull request Oct 1, 2025
@bleeqer @t8m
ts_conf: fix memory leak in TS_CONF_set_policies
342dbd5 
Reviewed-by: Paul Dale <ppzgs1@gmail.com>
Reviewed-by: Tomas Mraz <tomas@openssl.org>
(Merged from #28686)

(cherry picked from commit 1f3a660)
openssl-machine pushed a commit that referenced this pull request Oct 1, 2025
@bleeqer @t8m
ts_conf: fix memory leak in TS_CONF_set_policies
1f3a660 
Reviewed-by: Paul Dale <ppzgs1@gmail.com>
Reviewed-by: Tomas Mraz <tomas@openssl.org>
(Merged from #28686)
openssl-machine pushed a commit that referenced this pull request Oct 1, 2025
@bleeqer @t8m
ts_conf: fix memory leak in TS_CONF_set_policies
0be3e1d 
Reviewed-by: Paul Dale <ppzgs1@gmail.com>
Reviewed-by: Tomas Mraz <tomas@openssl.org>
(Merged from #28686)

(cherry picked from commit 1f3a660)
@t8m
Copy link
Member

t8m commented Oct 1, 2025

Merged to all the active branches. Thank you for your contribution.

@t8m t8m closed this Oct 1, 2025
openssl-machine pushed a commit that referenced this pull request Oct 1, 2025
@bleeqer @t8m
ts_conf: fix memory leak in TS_CONF_set_policies
8cfb565 
Reviewed-by: Paul Dale <ppzgs1@gmail.com>
Reviewed-by: Tomas Mraz <tomas@openssl.org>
(Merged from #28686)

(cherry picked from commit 1f3a660)
openssl-machine pushed a commit that referenced this pull request Oct 1, 2025
@bleeqer @t8m
ts_conf: fix memory leak in TS_CONF_set_policies
49efe65 
Reviewed-by: Paul Dale <ppzgs1@gmail.com>
Reviewed-by: Tomas Mraz <tomas@openssl.org>
(Merged from #28686)

(cherry picked from commit 1f3a660)
openssl-machine pushed a commit that referenced this pull request Oct 1, 2025
@bleeqer @t8m
ts_conf: fix memory leak in TS_CONF_set_policies
04db782 
Reviewed-by: Paul Dale <ppzgs1@gmail.com>
Reviewed-by: Tomas Mraz <tomas@openssl.org>
(Merged from #28686)

(cherry picked from commit 1f3a660)
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@t8m t8m t8m approved these changes

@paulidale paulidale paulidale approved these changes

+1 more reviewer

@jogme jogme jogme approved these changes

Reviewers whose approvals may not affect merge requirements
Assignees
No one assigned
Labels
approval: ready to merge The 24 hour grace period has passed, ready to merge branch: master Merge to master branch branch: 3.0 Merge to openssl-3.0 branch branch: 3.2 Merge to openssl-3.2 branch: 3.3 Merge to openssl-3.3 branch: 3.4 Merge to openssl-3.4 branch: 3.5 Merge to openssl-3.5 branch: 3.6 Merge to openssl-3.6 tests: exempted The PR is exempt from requirements for testing triaged: bug The issue/pr is/fixes a bug
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

Memory Leak in TS_CONF_set_policies
5 participants
@bleeqer @openssl-machine @t8m @paulidale @jogme