From ec20a1edf8095ecc407b89add1f75e4023c04c48 Mon Sep 17 00:00:00 2001
From: tteras <tteras@NetBSD.org>
Date: Wed, 29 Apr 2009 10:50:01 +0000
Subject: [PATCH] From Ross Meng: Fix a memory leak in X509 certificate
 validation.

---
 crypto/dist/ipsec-tools/src/racoon/crypto_openssl.c | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/crypto/dist/ipsec-tools/src/racoon/crypto_openssl.c b/crypto/dist/ipsec-tools/src/racoon/crypto_openssl.c
index fe3df8eb1e15..34064fc0ab40 100644
--- a/crypto/dist/ipsec-tools/src/racoon/crypto_openssl.c
+++ b/crypto/dist/ipsec-tools/src/racoon/crypto_openssl.c
@@ -1,4 +1,4 @@
-/*	$NetBSD: crypto_openssl.c,v 1.18 2009/04/20 13:22:41 tteras Exp $	*/
+/*	$NetBSD: crypto_openssl.c,v 1.19 2009/04/29 10:50:01 tteras Exp $	*/
 
 /* Id: crypto_openssl.c,v 1.47 2006/05/06 20:42:09 manubsd Exp */
 
@@ -510,7 +510,7 @@ eay_check_x509cert(cert, CApath, CAfile, local)
 	X509_STORE_CTX_set_flags (csc, X509_V_FLAG_CRL_CHECK_ALL);
 #endif
 	error = X509_verify_cert(csc);
-	X509_STORE_CTX_cleanup(csc);
+	X509_STORE_CTX_free(csc);
 
 	/*
 	 * if x509_verify_cert() is successful then the value of error is