Mathias Axelsson found a case where we free()d the server certificate twice!

author Daniel Stenberg <daniel@haxx.se>

Sat, 15 Nov 2003 10:00:20 +0000 (10:00 +0000)

committer Daniel Stenberg <daniel@haxx.se>

Sat, 15 Nov 2003 10:00:20 +0000 (10:00 +0000)
author Daniel Stenberg <daniel@haxx.se>
Sat, 15 Nov 2003 10:00:20 +0000 (10:00 +0000)
committer Daniel Stenberg <daniel@haxx.se>
Sat, 15 Nov 2003 10:00:20 +0000 (10:00 +0000)
diff --git a/lib/ssluse.c b/lib/ssluse.c

index 67e457c..b0203fd 100644 (file)
--- a/lib/ssluse.c
+++ b/lib/ssluse.c
@@ -863,7 +863,6 @@ static CURLcode verifyhost(struct connectdata *conn)
        if(data->set.ssl.verifyhost > 1) {
          failf(data,
                "SSL: unable to obtain common name from peer certificate");
-        X509_free(conn->ssl.server_cert);
          return CURLE_SSL_PEER_CERTIFICATE;
        }
        else {
@@ -880,7 +879,6 @@ static CURLcode verifyhost(struct connectdata *conn)
          if(data->set.ssl.verifyhost > 1) {
            failf(data, "SSL: certificate subject name '%s' does not match "
                  "target host name '%s'", peer_CN, conn->hostname);
-          X509_free(conn->ssl.server_cert);
            return CURLE_SSL_PEER_CERTIFICATE;
          }
          else
author	Daniel Stenberg <daniel@haxx.se>
	Sat, 15 Nov 2003 10:00:20 +0000 (10:00 +0000)
committer	Daniel Stenberg <daniel@haxx.se>
	Sat, 15 Nov 2003 10:00:20 +0000 (10:00 +0000)