From: Brendan Cully <brendan@kublai.com>
Date: Wed, 3 Aug 2005 06:51:24 +0000 (+0000)
Subject: Don't double-free X509 certificates. This patch looks wrong, but it isn't.
X-Git-Tag: mutt-1-5-10-rel~58
X-Git-Url: https://granicus.if.org/sourcecode?a=commitdiff_plain;h=8f7c9b620c39462d03028b8143378339dc515dc2;p=mutt

Don't double-free X509 certificates. This patch looks wrong, but it isn't.
---

diff --git a/mutt_ssl.c b/mutt_ssl.c
index 52b02065..b670f276 100644
--- a/mutt_ssl.c
+++ b/mutt_ssl.c
@@ -577,11 +577,11 @@ static int check_certificate_by_digest (X509 *peercert)
   while ((cert = READ_X509_KEY (fp, &cert)) != NULL)
   {
     pass = compare_certificates (cert, peercert, peermd, peermdlen) ? 0 : 1;
-    X509_free (cert);
     
     if (pass)
       break;
   }
+  X509_free (cert);
   fclose (fp);
 
   return pass;