~mdw / sgt / putty / commitdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | patch | inline | side by side (parent: 72fd638)
NULL a couple of members after freeing them in ssh_free(). In particular,
authorjacob <jacob@cda61777-01e9-0310-a592-d414129be87e>
Thu, 2 Dec 2004 13:37:28 +0000 (13:37 +0000)
committerjacob <jacob@cda61777-01e9-0310-a592-d414129be87e>
Thu, 2 Dec 2004 13:37:28 +0000 (13:37 +0000)
should stop ssh_do_close() accessing freed ssh->channels when invoked later
from ssh_free(). Spotted by Fred Sauer.

(Perhaps this is the cause of the crashes people have been reporting on
abnormal closures such as `Software caused connection abort'? I've not been
able to test this.)

git-svn-id: svn://svn.tartarus.org/sgt/putty@4946 cda61777-01e9-0310-a592-d414129be87e

ssh.c patch | blob | blame | history

diff --git a/ssh.c b/ssh.c
index e0facac..8c552b1 100644 (file)
--- a/ssh.c
+++ b/ssh.c
@@ -7235,12 +7235,14 @@ static void ssh_free(void *handle)
            sfree(c);
        }
        freetree234(ssh->channels);
+       ssh->channels = NULL;
     }
 
     if (ssh->rportfwds) {
        while ((pf = delpos234(ssh->rportfwds, 0)) != NULL)
            sfree(pf);
        freetree234(ssh->rportfwds);
+       ssh->rportfwds = NULL;
     }
     sfree(ssh->deferred_send_data);
     if (ssh->x11auth)
Simon Tatham's PuTTY GUI SSH client; import of svn://svn.tartarus.org/sgt/putty