quic: return 0 from SSL_CTX_sess_set_new_cb callback

addaleax · jasnell · commit 0e7c8bdc0c3a · 2020-06-22T11:06:40.000-07:00
The callback passed to `SSL_CTX_sess_set_new_cb()` should return 1 if it takes ownership (i.e. holds a reference that is later freed through `SSL_SESSION_free()`) of the passed session, and 0 otherwise. Since we don’t take ownership of the session and instead only save a serialized version of it, return 0 instead of 1. This closes a memory leak reported when running `sequential/test-quic-preferred-address-ipv6`. PR-URL: #33931 Reviewed-By: James M Snell <jasnell@gmail.com> Reviewed-By: Daniel Bevenius <daniel.bevenius@gmail.com> Reviewed-By: Tobias Nießen <tniessen@tnie.de>
diff --git a/src/quic/node_quic_session.cc b/src/quic/node_quic_session.cc
@@ -2295,7 +2295,7 @@ int QuicSession::set_session(SSL_SESSION* session) {
   if (size > SecureContext::kMaxSessionSize)
     return 0;
   listener_->OnSessionTicket(size, session);
-  return 1;
+  return 0;
 }
 
 // A client QuicSession can be migrated to a different QuicSocket instance.

Original file line number	Diff line number	Diff line change
`@@ -2295,7 +2295,7 @@ int QuicSession::set_session(SSL_SESSION* session) {`
`2295`	`2295`	`if (size > SecureContext::kMaxSessionSize)`
`2296`	`2296`	`return 0;`
`2297`	`2297`	`listener_->OnSessionTicket(size, session);`
`2298`		`- return 1;`
	`2298`	`+ return 0;`
`2299`	`2299`	`}`
`2300`	`2300`
`2301`	`2301`	`// A client QuicSession can be migrated to a different QuicSocket instance.`