February 2015 - tor-commits - lists.torproject.org

[tor/master] Changes file for 13865.
by nickm＠torproject.org 03 Feb '15

03 Feb '15

commit 313e2a7dabbe9cc32c9db231cf5c97dee77cdea9 Author: rl1987 <rl1987(a)sdf.lonestar.org> Date: Mon Jan 26 21:23:42 2015 +0200 Changes file for 13865. --- changes/feature13865 | 5 +++++ 1 file changed, 5 insertions(+) diff --git a/changes/feature13865 b/changes/feature13865 new file mode 100644 index 0000000..48291b4 --- /dev/null +++ b/changes/feature13865 @@ -0,0 +1,5 @@ + o Minor features: + - Implement '-f -' CLI suboption to allow torrc to be read + from standard input, thus not requiring to store torrc in file + system. Implements feature 13865. +

1 0

[tor/master] Merge branch 'feature13864_squashed'
by nickm＠torproject.org 03 Feb '15

03 Feb '15

commit 79c7625e38893920a80451ba420ee45ccd67f79b Merge: 69deab8 1ebed7c Author: Nick Mathewson <nickm(a)torproject.org> Date: Mon Feb 2 13:32:53 2015 -0500 Merge branch 'feature13864_squashed' changes/feature13865 | 5 +++++ doc/tor.1.txt | 3 ++- src/or/config.c | 25 ++++++++++++++++++++++++- 3 files changed, 31 insertions(+), 2 deletions(-)

1 0

[tor/master] Fix an unused-variable warning.
by nickm＠torproject.org 03 Feb '15

03 Feb '15

commit 03563f47230d84aa492c32214b2b9da68bef27ea Author: Nick Mathewson <nickm(a)torproject.org> Date: Mon Feb 2 13:35:44 2015 -0500 Fix an unused-variable warning. --- src/or/config.c | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/src/or/config.c b/src/or/config.c index ae33a07..de0baa4 100644 --- a/src/or/config.c +++ b/src/or/config.c @@ -4205,7 +4205,7 @@ find_torrc_filename(config_line_t *cmd_arg, * Upon failure, return NULL. */ static char * -load_torrc_from_stdin(config_line_t *cmd_arg) +load_torrc_from_stdin(void) { size_t sz_out; @@ -4360,7 +4360,7 @@ options_init_from_torrc(int argc, char **argv) (f_line != NULL && strcmp(f_line->value, "-") == 0); if (read_torrc_from_stdin) { - cf = load_torrc_from_stdin(cmdline_only_options); + cf = load_torrc_from_stdin(); } else { cf = load_torrc_from_disk(cmdline_only_options, 0); }

1 0

[translation/tor-launcher-progress_completed] Update translations for tor-launcher-progress_completed
by translation＠torproject.org 03 Feb '15

03 Feb '15

commit a1f80e6dda8baff1dc948949ff332e17814224de Author: Translation commit bot <translation(a)torproject.org> Date: Mon Feb 2 17:15:37 2015 +0000 Update translations for tor-launcher-progress_completed --- kn/progress.dtd | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/kn/progress.dtd b/kn/progress.dtd index 39c1bbb..7b197ab 100644 --- a/kn/progress.dtd +++ b/kn/progress.dtd @@ -1,4 +1,4 @@ <!ENTITY torprogress.dialog.title "ಟಾರ್‌ನ ಸ್ಥಿತಿ"> <!ENTITY torprogress.openSettings "ಅಪೂರ್ಣ ಸೆಟ್ಟಿಂಗ್‌ಗಳು"> <!ENTITY torprogress.heading "ಟಾರ್ ಜಾಲಕ್ಕೆ ಸೇರಿಕೋತಾ ಇದೀವಿ."> -<!ENTITY torprogress.pleaseWait "ಟಾರ್ ಜಾಲಕ್ಕೆ ಸೇರಿಕೊಂಡ ನಂತರ ಟಾರ್ ಬ್ರೌಸರ್ ತೆರಕೊಳ್ಳುತ್ತೆ."> +<!ENTITY torprogress.pleaseWait "ನಾವು ಟಾರ್ ಜಾಲಬಂಧಕ್ಕೆ ಸಂಪರ್ಕವನ್ನು ಕಲ್ಪಿಸುತ್ತಿದ್ದೆವೆ. ದಯವಿಟ್ಟು ನಿರೀಕ್ಷಿಸಿ">

1 0

[translation/tor-launcher-progress] Update translations for tor-launcher-progress
by translation＠torproject.org 03 Feb '15

03 Feb '15

commit 15928b9bad583d61baa7be603e23e5fa83d96104 Author: Translation commit bot <translation(a)torproject.org> Date: Mon Feb 2 17:15:33 2015 +0000 Update translations for tor-launcher-progress --- kn/progress.dtd | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/kn/progress.dtd b/kn/progress.dtd index b1c647d..7b197ab 100644 --- a/kn/progress.dtd +++ b/kn/progress.dtd @@ -1,4 +1,4 @@ <!ENTITY torprogress.dialog.title "ಟಾರ್‌ನ ಸ್ಥಿತಿ"> <!ENTITY torprogress.openSettings "ಅಪೂರ್ಣ ಸೆಟ್ಟಿಂಗ್‌ಗಳು"> <!ENTITY torprogress.heading "ಟಾರ್ ಜಾಲಕ್ಕೆ ಸೇರಿಕೋತಾ ಇದೀವಿ."> -<!ENTITY torprogress.pleaseWait "Please wait while we establish a connection to the Tor network."> +<!ENTITY torprogress.pleaseWait "ನಾವು ಟಾರ್ ಜಾಲಬಂಧಕ್ಕೆ ಸಂಪರ್ಕವನ್ನು ಕಲ್ಪಿಸುತ್ತಿದ್ದೆವೆ. ದಯವಿಟ್ಟು ನಿರೀಕ್ಷಿಸಿ">

1 0

[translation/https_everywhere] Update translations for https_everywhere
by translation＠torproject.org 03 Feb '15

03 Feb '15

commit 134e3452b41726ec035f07eb4de76f2c978687b9 Author: Translation commit bot <translation(a)torproject.org> Date: Mon Feb 2 17:15:13 2015 +0000 Update translations for https_everywhere --- kn/https-everywhere.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/kn/https-everywhere.properties b/kn/https-everywhere.properties index 6781dba..0175a09 100644 --- a/kn/https-everywhere.properties +++ b/kn/https-everywhere.properties @@ -5,4 +5,4 @@ https-everywhere.menu.noRules = (ಈ ಪುಟಕ್ಕೆ ಯಾವುದೇ https-everywhere.menu.unknownRules = (ಈ ಪುಟದ ನಿಯಮಗಳು ಗೊತ್ತಿಲ್ಲ) https-everywhere.toolbar.hint = HTTPS ಎಲ್ಲೆಡೆ ಈಗ ಸಕ್ರಿಯವಾಗಿದೆ . ನೀವು ಇದನ್ನು ಸೈಟ್ ಬೈ ಸೈಟ್ ಆಧಾರದಲ್ಲಿ ಬದಲಾಯಿಸಲು ವಿಳಾಸ ಸಲಾಕೆಯಲ್ಲಿರುವ ಐಕಾನ್ ಅನ್ನು ಕ್ಲಿಕ್ ಮಾಡಿ https-everywhere.migration.notification0 = In order to implement a crucial fix, this update resets your HTTPS Everywhere rule preferences to their default values. -https-everywhere.menu.ruleset-tests = Run HTTPS Everywhere Ruleset Tests +https-everywhere.menu.ruleset-tests = ಎಲ್ಲೆಡೆ HTTPS ಓಡಿಸು Ruleset Tests

1 0

[translation/torbutton-torbuttonproperties] Update translations for torbutton-torbuttonproperties
by translation＠torproject.org 03 Feb '15

03 Feb '15

commit c6320c0b1c59e644dde654787051b62c487dfd0c Author: Translation commit bot <translation(a)torproject.org> Date: Mon Feb 2 16:45:53 2015 +0000 Update translations for torbutton-torbuttonproperties --- kn/torbutton.properties | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/kn/torbutton.properties b/kn/torbutton.properties index 3c9b5a9..2909981 100644 --- a/kn/torbutton.properties +++ b/kn/torbutton.properties @@ -5,7 +5,7 @@ torbutton.panel.tooltip.enabled = ಟಾರ್ ನಿಷ್ಕ್ರಿಯಗೆ torbutton.panel.plugins.disabled = ಪ್ಲಗ್ಗಿನ್ನ್ ಅನ್ನು ಸಕ್ರಿಯಗೊಳಿಸಲು ಕ್ಲಿಕ್ ಮಾಡಿ torbutton.panel.plugins.enabled = ಪ್ಲಗ್ಗಿನ್ನ್ ಅನ್ನು ನಿಷ್ಕ್ರಿಯಗೊಳಿಸಲು ಕ್ಲಿಕ್ ಮಾಡಿ torbutton.panel.label.disabled = ಟಾರ್ ನಿಷ್ಕ್ರಿಯಗೊಳಿಸಲಾಗಿದೆ -torbutton.panel.label.enabled = Tor Enabled +torbutton.panel.label.enabled = ಟಾರ್ ಸಕ್ರಿಯಗೊಳಿಸಲಾಗಿದೆ extensions.torbutton(a)torproject.org.description = Torbutton provides a button to configure Tor settings and quickly and easily clear private browsing data. torbutton.popup.history.warning = Torbutton blocked activity from a tab loaded in a different Tor state.\n\nThis is to work around Firefox Bugs 409737 and 417869.\n\nIf this popup seemed to happen for no reason, one of your tabs is attempting to reload itself in the background, and this was blocked.\n\nTo reload the tab in this Tor state, hit 'enter' in the URL location box.\n\n torbutton.popup.plugin.warning = Torbutton blocked direct Tor load of plugin content.\n\nUse Save-As instead.\n\n

1 0

[translation/https_everywhere] Update translations for https_everywhere
by translation＠torproject.org 03 Feb '15

03 Feb '15

commit eaffafe0ce6fd90f15ef96a6a1d9fed4465e085f Author: Translation commit bot <translation(a)torproject.org> Date: Mon Feb 2 16:45:16 2015 +0000 Update translations for https_everywhere --- kn/https-everywhere.dtd | 4 ++-- kn/https-everywhere.properties | 12 ++++++------ 2 files changed, 8 insertions(+), 8 deletions(-) diff --git a/kn/https-everywhere.dtd b/kn/https-everywhere.dtd index 9a63c45..71197a8 100644 --- a/kn/https-everywhere.dtd +++ b/kn/https-everywhere.dtd @@ -12,8 +12,8 @@ <!ENTITY https-everywhere.menu.about "About HTTPS Everywhere"> <!ENTITY https-everywhere.menu.observatory "SSL Observatory Preferences"> -<!ENTITY https-everywhere.menu.globalEnable "Enable HTTPS Everywhere"> -<!ENTITY https-everywhere.menu.globalDisable "Disable HTTPS Everywhere"> +<!ENTITY https-everywhere.menu.globalEnable "ಎಲ್ಲೆಡೆ HTTPS ಸಕ್ರಿಯಗೊಳಿಸಿ"> +<!ENTITY https-everywhere.menu.globalDisable "ಎಲ್ಲೆಡೆ HTTPS ನಿಷ್ಕ್ರಿಯಗೊಳಿಸಿ"> <!ENTITY https-everywhere.menu.showCounter "Show Counter"> <!ENTITY https-everywhere.prefs.title "HTTPS Everywhere Preferences"> diff --git a/kn/https-everywhere.properties b/kn/https-everywhere.properties index be83831..6781dba 100644 --- a/kn/https-everywhere.properties +++ b/kn/https-everywhere.properties @@ -1,8 +1,8 @@ -https-everywhere.menu.globalEnable = Enable HTTPS Everywhere -https-everywhere.menu.globalDisable = Disable HTTPS Everywhere -https-everywhere.menu.enableDisable = Enable / Disable Rules -https-everywhere.menu.noRules = (No Rules for This Page) -https-everywhere.menu.unknownRules = (Rules for This Page Unknown) -https-everywhere.toolbar.hint = HTTPS Everywhere is now active. You can toggle it on a site-by-site basis by clicking the icon in the address bar. +https-everywhere.menu.globalEnable = ಎಲ್ಲೆಡೆ HTTPS ಸಕ್ರಿಯಗೊಳಿಸಿ +https-everywhere.menu.globalDisable = ಎಲ್ಲೆಡೆ HTTPS ನಿಷ್ಕ್ರಿಯಗೊಳಿಸಿ +https-everywhere.menu.enableDisable = ಸಕ್ರಿಯಗೊಳಿಸಿ/ ನಿಷ್ಕ್ರಿಯಗೊಳಿಸಿ ನಿಯಮಗಳು +https-everywhere.menu.noRules = (ಈ ಪುಟಕ್ಕೆ ಯಾವುದೇ ನಿಯಮಗಳು ಇಲ್ಲ) +https-everywhere.menu.unknownRules = (ಈ ಪುಟದ ನಿಯಮಗಳು ಗೊತ್ತಿಲ್ಲ) +https-everywhere.toolbar.hint = HTTPS ಎಲ್ಲೆಡೆ ಈಗ ಸಕ್ರಿಯವಾಗಿದೆ . ನೀವು ಇದನ್ನು ಸೈಟ್ ಬೈ ಸೈಟ್ ಆಧಾರದಲ್ಲಿ ಬದಲಾಯಿಸಲು ವಿಳಾಸ ಸಲಾಕೆಯಲ್ಲಿರುವ ಐಕಾನ್ ಅನ್ನು ಕ್ಲಿಕ್ ಮಾಡಿ https-everywhere.migration.notification0 = In order to implement a crucial fix, this update resets your HTTPS Everywhere rule preferences to their default values. https-everywhere.menu.ruleset-tests = Run HTTPS Everywhere Ruleset Tests

1 0

[translation/torbutton-torbuttonproperties] Update translations for torbutton-torbuttonproperties
by translation＠torproject.org 03 Feb '15

03 Feb '15

commit 99ea95989bb2f053b32150ec609a8bca5f04edf5 Author: Translation commit bot <translation(a)torproject.org> Date: Mon Feb 2 16:15:45 2015 +0000 Update translations for torbutton-torbuttonproperties --- kn/torbutton.properties | 14 +++++++------- 1 file changed, 7 insertions(+), 7 deletions(-) diff --git a/kn/torbutton.properties b/kn/torbutton.properties index fb501d9..3c9b5a9 100644 --- a/kn/torbutton.properties +++ b/kn/torbutton.properties @@ -1,10 +1,10 @@ -torbutton.button.tooltip.disabled = Enable Tor -torbutton.button.tooltip.enabled = Disable Tor -torbutton.panel.tooltip.disabled = Click to enable Tor -torbutton.panel.tooltip.enabled = Click to disable Tor -torbutton.panel.plugins.disabled = Click to enable plugins -torbutton.panel.plugins.enabled = Click to disable plugins -torbutton.panel.label.disabled = Tor Disabled +torbutton.button.tooltip.disabled = ಟಾರ್ ಸಕ್ರಿಯಗೊಳಿಸಿ +torbutton.button.tooltip.enabled = ಟಾರ್ ನಿಷ್ಕ್ರಿಯಗೊಳಿಸಿ +torbutton.panel.tooltip.disabled = ಟಾರ್ ಸಕ್ರಿಯಗೊಳಿಸಲು ಕ್ಲಿಕ್ ಮಾಡಿ +torbutton.panel.tooltip.enabled = ಟಾರ್ ನಿಷ್ಕ್ರಿಯಗೊಳಿಸಲು ಕ್ಲಿಕ್ ಮಾಡಿ +torbutton.panel.plugins.disabled = ಪ್ಲಗ್ಗಿನ್ನ್ ಅನ್ನು ಸಕ್ರಿಯಗೊಳಿಸಲು ಕ್ಲಿಕ್ ಮಾಡಿ +torbutton.panel.plugins.enabled = ಪ್ಲಗ್ಗಿನ್ನ್ ಅನ್ನು ನಿಷ್ಕ್ರಿಯಗೊಳಿಸಲು ಕ್ಲಿಕ್ ಮಾಡಿ +torbutton.panel.label.disabled = ಟಾರ್ ನಿಷ್ಕ್ರಿಯಗೊಳಿಸಲಾಗಿದೆ torbutton.panel.label.enabled = Tor Enabled extensions.torbutton(a)torproject.org.description = Torbutton provides a button to configure Tor settings and quickly and easily clear private browsing data. torbutton.popup.history.warning = Torbutton blocked activity from a tab loaded in a different Tor state.\n\nThis is to work around Firefox Bugs 409737 and 417869.\n\nIf this popup seemed to happen for no reason, one of your tabs is attempting to reload itself in the background, and this was blocked.\n\nTo reload the tab in this Tor state, hit 'enter' in the URL location box.\n\n

1 0

[tor/master] Check more thoroughly for unlogged OpenSSL errors
by nickm＠torproject.org 02 Feb '15

02 Feb '15

commit 5bcf9522618307ca4829ee7349a482a869766d6e Author: Nick Mathewson <nickm(a)torproject.org> Date: Sun Nov 2 13:04:44 2014 -0500 Check more thoroughly for unlogged OpenSSL errors --- changes/bug13319 | 4 ++++ src/common/tortls.c | 55 ++++++++++++++++++++++++++++++++++++++++----------- 2 files changed, 47 insertions(+), 12 deletions(-) diff --git a/changes/bug13319 b/changes/bug13319 new file mode 100644 index 0000000..eee95c8 --- /dev/null +++ b/changes/bug13319 @@ -0,0 +1,4 @@ + o Minor bugfixes: + - Check more thoroughly throughout the TLS code for possible unlogged + TLS errors. Possible diagnostic or fix for bug 13319. + diff --git a/src/common/tortls.c b/src/common/tortls.c index cca2d42..4f588de 100644 --- a/src/common/tortls.c +++ b/src/common/tortls.c @@ -452,6 +452,8 @@ tor_tls_get_error(tor_tls_t *tls, int r, int extra, static void tor_tls_init(void) { + check_no_tls_errors(); + if (!tls_library_is_initialized) { long version; SSL_library_init(); @@ -550,6 +552,8 @@ tor_tls_init(void) void tor_tls_free_all(void) { + check_no_tls_errors(); + if (server_tls_context) { tor_tls_context_t *ctx = server_tls_context; server_tls_context = NULL; @@ -861,29 +865,33 @@ tor_cert_decode(const uint8_t *certificate, size_t certificate_len) const unsigned char *cp = (const unsigned char *)certificate; tor_cert_t *newcert; tor_assert(certificate); + check_no_tls_errors(); if (certificate_len > INT_MAX) - return NULL; + goto err; x509 = d2i_X509(NULL, &cp, (int)certificate_len); if (!x509) - return NULL; /* Couldn't decode */ + goto err; /* Couldn't decode */ if (cp - certificate != (int)certificate_len) { X509_free(x509); - return NULL; /* Didn't use all the bytes */ + goto err; /* Didn't use all the bytes */ } newcert = tor_cert_new(x509); if (!newcert) { - return NULL; + goto err; } if (newcert->encoded_len != certificate_len || fast_memneq(newcert->encoded, certificate, certificate_len)) { /* Cert wasn't in DER */ tor_cert_free(newcert); - return NULL; + goto err; } return newcert; + err: + tls_log_errors(NULL, LOG_INFO, LD_CRYPTO, "decoding a certificate"); + return NULL; } /** Set *encoded_out and *size_out to cert's encoded DER @@ -1025,21 +1033,24 @@ tor_tls_cert_is_valid(int severity, const tor_cert_t *signing_cert, int check_rsa_1024) { + check_no_tls_errors(); + EVP_PKEY *cert_key; EVP_PKEY *signing_key = X509_get_pubkey(signing_cert->cert); int r, key_ok = 0; + if (!signing_key) - return 0; + goto bad; r = X509_verify(cert->cert, signing_key); EVP_PKEY_free(signing_key); if (r <= 0) - return 0; + goto bad; /* okay, the signature checked out right. Now let's check the check the * lifetime. */ if (check_cert_lifetime_internal(severity, cert->cert, 48*60*60, 30*24*60*60) < 0) - return 0; + goto bad; cert_key = X509_get_pubkey(cert->cert); if (check_rsa_1024 && cert_key) { @@ -1059,11 +1070,14 @@ tor_tls_cert_is_valid(int severity, } EVP_PKEY_free(cert_key); if (!key_ok) - return 0; + goto bad; /* XXXX compare DNs or anything? */ return 1; + bad: + tls_log_errors(NULL, LOG_INFO, LD_CRYPTO, "checking a certificate"); + return 0; } /** Increase the reference count of ctx. */ @@ -1090,6 +1104,7 @@ tor_tls_context_init(unsigned flags, int rv1 = 0; int rv2 = 0; const int is_public_server = flags & TOR_TLS_CTX_IS_PUBLIC_SERVER; + check_no_tls_errors(); if (is_public_server) { tor_tls_context_t *new_ctx; @@ -1134,6 +1149,7 @@ tor_tls_context_init(unsigned flags, 1); } + tls_log_errors(NULL, LOG_WARN, LD_CRYPTO, "constructing a TLS context"); return MIN(rv1, rv2); } @@ -1857,11 +1873,12 @@ tor_tls_new(int sock, int isServer) client_tls_context; result->magic = TOR_TLS_MAGIC; + check_no_tls_errors(); tor_assert(context); /* make sure somebody made it first */ if (!(result->ssl = SSL_new(context->ctx))) { tls_log_errors(NULL, LOG_WARN, LD_NET, "creating SSL object"); tor_free(result); - return NULL; + goto err; } #ifdef SSL_set_tlsext_host_name @@ -1881,7 +1898,7 @@ tor_tls_new(int sock, int isServer) #endif SSL_free(result->ssl); tor_free(result); - return NULL; + goto err; } if (!isServer) rectify_client_ciphers(&result->ssl->cipher_list); @@ -1894,7 +1911,7 @@ tor_tls_new(int sock, int isServer) #endif SSL_free(result->ssl); tor_free(result); - return NULL; + goto err; } { int set_worked = @@ -1928,6 +1945,10 @@ tor_tls_new(int sock, int isServer) if (isServer) tor_tls_setup_session_secret_cb(result); + goto done; + err: + result = NULL; + done: /* Not expected to get called. */ tls_log_errors(NULL, LOG_WARN, LD_NET, "creating tor_tls_t object"); return result; @@ -2175,6 +2196,7 @@ int tor_tls_finish_handshake(tor_tls_t *tls) { int r = TOR_TLS_DONE; + check_no_tls_errors(); if (tls->isServer) { SSL_set_info_callback(tls->ssl, NULL); SSL_set_verify(tls->ssl, SSL_VERIFY_PEER, always_accept_verify_cb); @@ -2220,6 +2242,7 @@ tor_tls_finish_handshake(tor_tls_t *tls) r = TOR_TLS_ERROR_MISC; } } + tls_log_errors(NULL, LOG_WARN, LD_NET, "finishing the handshake"); return r; } @@ -2250,6 +2273,8 @@ tor_tls_renegotiate(tor_tls_t *tls) /* We could do server-initiated renegotiation too, but that would be tricky. * Instead of "SSL_renegotiate, then SSL_do_handshake until done" */ tor_assert(!tls->isServer); + + check_no_tls_errors(); if (tls->state != TOR_TLS_ST_RENEGOTIATE) { int r = SSL_renegotiate(tls->ssl); if (r <= 0) { @@ -2278,6 +2303,7 @@ tor_tls_shutdown(tor_tls_t *tls) char buf[128]; tor_assert(tls); tor_assert(tls->ssl); + check_no_tls_errors(); while (1) { if (tls->state == TOR_TLS_ST_SENTCLOSE) { @@ -2465,6 +2491,7 @@ tor_tls_verify(int severity, tor_tls_t *tls, crypto_pk_t **identity_key) RSA *rsa; int r = -1; + check_no_tls_errors(); *identity_key = NULL; try_to_extract_certs_from_tls(severity, tls, &cert, &id_cert); @@ -2705,6 +2732,8 @@ dn_indicates_v3_cert(X509_NAME *name) int tor_tls_received_v3_certificate(tor_tls_t *tls) { + check_no_tls_errors(); + X509 *cert = SSL_get_peer_certificate(tls->ssl); EVP_PKEY *key = NULL; X509_NAME *issuer_name, *subject_name; @@ -2737,6 +2766,8 @@ tor_tls_received_v3_certificate(tor_tls_t *tls) } done: + tls_log_errors(tls, LOG_WARN, LD_NET, "checking for a v3 cert"); + if (key) EVP_PKEY_free(key); if (cert)

1 0