Fix for OpenSSL 3.2+. - Githubissues

apache / trafficserver

Apache Traffic Server™ is a fast, scalable and extensible HTTP/1.1 and HTTP/2 compliant caching proxy server.

https://trafficserver.apache.org/

Apache License 2.0

1.74k stars 782 forks source link

Open ywkaras opened 3 days ago

ywkaras commented 3 days ago

It seems BIO user data is no longer initialized to nullptr.

maskit commented 3 days ago

It seems BIO user data is no longer initialized to nullptr.

Yeah, and it's initialized to something else. This change probably cause a memory leak and frees something that should not be freed by OpenSSL, if TFO is enabled. https://github.com/openssl/openssl/blob/77d716d3be95317ade5a7b8dda0b4946522c5a34/crypto/bio/bss_sock.c#L94

maskit commented 9 hours ago

How about using BIO_set_ex_data?