a84f06fc1e
CBB_init_fixed() should not call free because it can lead to use after free or double free bugs. The caller should be responsible for creating and destroying the buffer. In the current code, ssl3_get_v2_client_hello() may free s->init_buf->data via CBB_init_fixed(). It can also be freed via SSL_free(s) since ssl3_get_v2_client_hello() doesn't set it to NULL and CBB_init_fixed() can't set the caller's pointer to NULL. Change-Id: Ia05a67ae25af7eb4fb04f08f20d50d912b41e38b |
||
|---|---|---|
| .. | ||
| ber.c | ||
| bytestring_test.c | ||
| cbb.c | ||
| cbs.c | ||
| CMakeLists.txt | ||
| internal.h | ||