RESOURCE_LEAK fixed

Resolves: rhbz#1977400

unbound-1.13.1-rh1977400.patch

@@ -0,0 +1,12 @@
+diff --git a/util/net_help.c b/util/net_help.c
+index 3b5527a..42a7666 100644
+--- a/util/net_help.c
++++ b/util/net_help.c
+@@ -1172,6 +1172,7 @@ void* connect_sslctx_create(char* key, char* pem, char* verifypem, int wincert)
+ 	if((SSL_CTX_set_options(ctx, SSL_OP_NO_RENEGOTIATION) &
+ 		SSL_OP_NO_RENEGOTIATION) != SSL_OP_NO_RENEGOTIATION) {
+ 		log_crypto_err("could not set SSL_OP_NO_RENEGOTIATION");
++		SSL_CTX_free(ctx);
+ 		return 0;
+ 	}
+ #endif

unbound.spec

@@ -37,7 +37,7 @@
 Summary: Validating, recursive, and caching DNS(SEC) resolver
 Name: unbound
 Version: 1.13.1
-Release: 9%{?extra_version:.%{extra_version}}%{?dist}
+Release: 10%{?extra_version:.%{extra_version}}%{?dist}
 License: BSD
 Url: https://nlnetlabs.nl/projects/unbound/
 Source: https://nlnetlabs.nl/downloads/%{name}/%{name}-%{version}%{?extra_version}.tar.gz
@@ -63,6 +63,7 @@ Source19: http://keys.gnupg.net/pks/lookup?op=get&search=0x9F6F1C2D7E045F8D#/wou
 # rhbz#1952814 upstream PR https://github.com/NLnetLabs/unbound/pull/415/files
 Patch1: unbound-1.13.1-rh1952814.patch
 Patch2: unbound-1.13.1-rh1991005.patch
+Patch3: unbound-1.13.1-rh1977400.patch
 
 BuildRequires: gcc, make
 BuildRequires: flex, openssl-devel
@@ -461,6 +462,10 @@ popd
 %attr(0644,root,root) %config %{_sysconfdir}/%{name}/root.key
 
 %changelog
+* Thu Feb 10 2022 Artem Egorenkov <aegorenk@redhat.com> - 1.13.1-10
+- RESOURCE_LEAK fixed
+- Resolves: rhbz#1977400
+
 * Tue Aug 10 2021 Artem Egorenkov <aegorenk@redhat.com> - 1.13.1-9
 - Don't use delted OpenSSL macroses
 - Resolves: rhbz#1991005