ssl_init() left a dirty in_ctr pointer on failed allocation of out_ctr

2024-10-18 10:11:04 +00:00 · 2014-03-17 13:41:51 +01:00 · 2014-03-17 13:41:51 +01:00 · 3d6504a935
parent 2eea29238c
commit 3d6504a935
2 changed files with 4 additions and 1 deletions
--- a/2
+++ b/2
@ -43,6 +43,8 @@ Bugfix
   client certificate.
   * ssl_srv was leaking memory when client presented a timed out ticket
   containing a client certificate
+   * ssl_init() was leaving a dirty pointer in ssl_context if malloc of
+     out_ctr failed

 = PolarSSL 1.3.4 released on 2014-01-27
 Features
--- a/library/ssl_tls.c
+++ b/library/ssl_tls.c
@ -3427,7 +3427,8 @@ int ssl_init( ssl_context *ssl )
    if( ssl->out_ctr == NULL )
    {
        SSL_DEBUG_MSG( 1, ( "malloc(%d bytes) failed", len ) );
-        polarssl_free( ssl-> in_ctr );
+        polarssl_free( ssl->in_ctr );
+        ssl->in_ctr = NULL;
        return( POLARSSL_ERR_SSL_MALLOC_FAILED );
    }