bpo-37702: Fix SSL's certificate-store leak on Windows (GH-15632)

author neonene <53406459+neonene@users.noreply.github.com>

Mon, 9 Sep 2019 12:33:43 +0000 (21:33 +0900)

committer Steve Dower <steve.dower@python.org>

Mon, 9 Sep 2019 12:33:43 +0000 (05:33 -0700)
author neonene <53406459+neonene@users.noreply.github.com>
Mon, 9 Sep 2019 12:33:43 +0000 (21:33 +0900)
committer Steve Dower <steve.dower@python.org>
Mon, 9 Sep 2019 12:33:43 +0000 (05:33 -0700)
diff --git a/Misc/NEWS.d/next/Windows/2019-07-29-16-49-31.bpo-37702.Lj2f5e.rst b/Misc/NEWS.d/next/Windows/2019-07-29-16-49-31.bpo-37702.Lj2f5e.rst

new file mode 100644 (file)

index 0000000..67d53d4
--- /dev/null
+++ b/Misc/NEWS.d/next/Windows/2019-07-29-16-49-31.bpo-37702.Lj2f5e.rst
@@ -0,0 +1,2 @@
+Fix memory leak on Windows in creating an SSLContext object or
+running urllib.request.urlopen('https://...').
+\ No newline at end of file
diff --git a/Modules/_ssl.c b/Modules/_ssl.c

index 3d63612168b2363fa5a8ee78e0f2ebc3e6147200..d94efa98e951c1f3380e6707ea7d07e66ea02246 100644 (file)
--- a/Modules/_ssl.c
+++ b/Modules/_ssl.c
@@ -5581,6 +5581,7 @@ ssl_collect_certificates(const char *store_name)
              if (result) {
                  ++storesAdded;
              }
+            CertCloseStore(hSystemStore, 0);  /* flag must be 0 */
          }
      }
      if (storesAdded == 0) {
author	neonene <53406459+neonene@users.noreply.github.com>
	Mon, 9 Sep 2019 12:33:43 +0000 (21:33 +0900)
committer	Steve Dower <steve.dower@python.org>
	Mon, 9 Sep 2019 12:33:43 +0000 (05:33 -0700)
Misc/NEWS.d/next/Windows/2019-07-29-16-49-31.bpo-37702.Lj2f5e.rst	[new file with mode: 0644]	patch \| blob
Modules/_ssl.c		patch \| blob \| history