fix(uv_ssl_t): fixed memory issues concerning ssl

bleenco · May 18, 2018 · e369673 · e369673
1 parent d63a733
commit e369673
Show file tree

Hide file tree

Showing 5 changed files with 17 additions and 2 deletions.
diff --git a/bproxy.gyp b/bproxy.gyp
@@ -3,7 +3,7 @@
     "gypkg_deps": [
       "git://github.com/libuv/libuv.git@^v1.x => uv.gyp:libuv",
       "git://github.com/indutny/[email protected] => uv_link_t.gyp:uv_link_t",
-      "git://github.com/indutny/uv_ssl_t@v1.0.5 => uv_ssl_t.gyp:uv_ssl_t",
+      "git://github.com/martinopresnik/uv_ssl_t@1.0.10 => uv_ssl_t.gyp:uv_ssl_t",
       "git://github.com/gypkg/openssl@~1.2.7  => openssl.gyp:openssl",
       "3rdparty/zlib => gyp/zlib.gyp:zlib"
     ]

diff --git a/include/config.h b/include/config.h
@@ -17,6 +17,7 @@
 #include "log.h"
 
 #include "openssl/ssl.h"
+#include "uv_ssl_t.h"
 
 #define CONFIG_MAX_HOSTS 10
 #define CONFIG_MAX_GZIP_MIME_TYPES 20

diff --git a/package.json b/package.json
@@ -4,7 +4,7 @@
   "private": true,
   "scripts": {
     "test": "node ./test/run.js",
-    "build": "gypkg build bproxy.gyp",
+    "build": "gypkg build bproxy.gyp --insecure",
     "clean": "rimraf gypkg_deps out",
     "log": "conventional-changelog -p angular -i CHANGELOG.md -s"
   },

diff --git a/src/bproxy.c b/src/bproxy.c
@@ -76,6 +76,10 @@ static int ssl_servername_cb(SSL *s, int *ad, void *arg)
 {
   conn_t *conn = (conn_t *)arg;
   const char *hostname = SSL_get_servername(s, TLSEXT_NAMETYPE_host_name);
+  if (!hostname)
+  {
+    hostname = "";
+  }
   proxy_config_t *proxy_config = find_proxy_config(hostname);
   if (!proxy_config)
   {
@@ -412,6 +416,7 @@ void parse_args(int argc, char **argv)
   {
     char *json = read_file(server->config_file);
     parse_config(json, server->config);
+    free(json);
   }
 }
 

diff --git a/src/config.c b/src/config.c
@@ -118,6 +118,7 @@ void parse_config(const char *json_string, config_t *config)
     config->num_proxies++;
 
     config->proxies[config->num_proxies - 1] = malloc(sizeof(proxy_config_t));
+    memset(config->proxies[config->num_proxies - 1], 0, sizeof(proxy_config_t));
     proxy_hosts = cJSON_GetObjectItemCaseSensitive(proxy, "hosts");
     config->proxies[config->num_proxies - 1]->num_hosts = 0;
     cJSON_ArrayForEach(proxy_host, proxy_hosts)
@@ -173,6 +174,14 @@ void parse_config(const char *json_string, config_t *config)
         ssl_enabled = false;
       }
     }
+    if (ssl_enabled)
+    {
+      if (uv_ssl_setup_recommended_secure_context(config->proxies[config->num_proxies - 1]->ssl_context))
+      {
+        log_error("configuring recommended secure context");
+        ssl_enabled = false;
+      }
+    }
     if (!ssl_enabled)
     {
       SSL_CTX_free(config->proxies[config->num_proxies - 1]->ssl_context);