IOT-2246 Avoid touching already-freed peer

Change-Id: I55802664860aec4a02da209d3597d68ad405a4a9 Signed-off-by: Dan Mihai <Daniel.Mihai@microsoft.com> Reviewed-on: https://gerrit.iotivity.org/gerrit/19859Reviewed-by: Kevin Kane <kkane@microsoft.com> Tested-by: jenkins-iotivity <jenkins@iotivity.org>

IOT-2246 Avoid touching already-freed peer
Change-Id: I55802664860aec4a02da209d3597d68ad405a4a9 Signed-off-by: Dan Mihai <Daniel.Mihai@microsoft.com> Reviewed-on: https://gerrit.iotivity.org/gerrit/19859Reviewed-by: Kevin Kane <kkane@microsoft.com> Tested-by: jenkins-iotivity <jenkins@iotivity.org>
47ecf2e3 · Dan Mihai · a7840d49 · 47ecf2e3
Commit 47ecf2e3 authored May 12, 2017 by Dan Mihai
Hide whitespace changes
Inline Side-by-side

Showing with 6 additions and 1 deletion

resource/csdk/connectivity/src/adapter_util/ca_adapter_net_ssl.c ...e/csdk/connectivity/src/adapter_util/ca_adapter_net_ssl.c +6 -1

No files found.
--- a/resource/csdk/connectivity/src/adapter_util/ca_adapter_net_ssl.c
+++ b/resource/csdk/connectivity/src/adapter_util/ca_adapter_net_ssl.c
@@ -1074,6 +1074,11 @@ static bool checkSslOperation(SslEndPoint_t*  peer,
        (MBEDTLS_SSL_ALERT_MSG_NO_APPLICATION_PROTOCOL != ret))
    {
        OIC_LOG_V(ERROR, NET_SSL_TAG, "%s: -0x%x", (str), -ret);
+
+        // Make a copy of the endpoint, because the callback might
+        // free the peer object, during SSL_RES() below.
+        CAEndpoint_t removedEndpoint = (peer)->sep.endpoint;
+
        oc_mutex_lock(g_sslContextMutex);

        if (MBEDTLS_ERR_SSL_BAD_HS_CLIENT_HELLO != ret)
@@ -1081,7 +1086,7 @@ static bool checkSslOperation(SslEndPoint_t*  peer,
            SSL_RES((peer), CA_DTLS_AUTHENTICATION_FAILURE);
        }

-        RemovePeerFromList(&(peer)->sep.endpoint);
+        RemovePeerFromList(&removedEndpoint);

        oc_mutex_unlock(g_sslContextMutex);
        return false;