tls: fix various tlsClient()/tlsServer() related bugs

- TLSconn structure on stack but not initialized (zeroed) - original filedescriptor double closed in error case - original filedescriptor leaked in success case - leaked TLSconn.sessionID and TLSconn.cert - clarify in pushtls(2) and pushssl(2)
author: cinap_lenrek <cinap_lenrek@gmx.de> 2013-09-14 19:19:08 +0200
committer: cinap_lenrek <cinap_lenrek@gmx.de> 2013-09-14 19:19:08 +0200
commit: 56836bfdbdca9fd6a5b608d249d178a22d3337d8 (patch)
tree: 75b84ef6650f92a48ba70823cb1e22f27d1d39bd /sys/src/cmd/ip/httpfile.c
parent: be5992955d4e417ca625b07af93a800464d4c11f (diff)
1 files changed, 3 insertions, 4 deletions
diff --git a/sys/src/cmd/ip/httpfile.c b/sys/src/cmd/ip/httpfile.c
index 8b4c725a6..b28cd63eb 100644
--- a/sys/src/cmd/ip/httpfile.c
+++ b/sys/src/cmd/ip/httpfile.c
@@ -186,12 +186,11 @@ dotls(int fd)
 {
 	TLSconn conn;
 
+	memset(&conn, 0, sizeof(conn));
 	if((fd=tlsClient(fd, &conn)) < 0)
 		sysfatal("tlsclient: %r");
-
-	if(conn.cert != nil)
-		free(conn.cert);
-
+	free(conn.cert);
+	free(conn.sessionID);
 	return fd;
 }
author	cinap_lenrek <cinap_lenrek@gmx.de>	2013-09-14 19:19:08 +0200
committer	cinap_lenrek <cinap_lenrek@gmx.de>	2013-09-14 19:19:08 +0200
commit	56836bfdbdca9fd6a5b608d249d178a22d3337d8 (patch)
tree	75b84ef6650f92a48ba70823cb1e22f27d1d39bd /sys/src/cmd/ip/httpfile.c
parent	be5992955d4e417ca625b07af93a800464d4c11f (diff)