ssl_client2/ssl_server2: Move is_psa_leaking() before mbedtls_psa_crypto_free() (and rng_free()) Signed-off-by: Przemyslaw Stekiel <przemyslaw.stekiel@mobica.com>

commit: bbb22bbd9e42e76f5899fd14d57413a6512fcf55 [log] [tgz]
author: Przemyslaw Stekiel <przemyslaw.stekiel@mobica.com> Wed Nov 03 09:06:09 2021 +0100
committer: Przemyslaw Stekiel <przemyslaw.stekiel@mobica.com> Wed Nov 03 09:06:09 2021 +0100
tree: 3a47368852da4940f98fdc729865a6b83dc4ed4c
parent: fed825a9aaabf9f66066ce2a71f44404e2f69a39 [diff] [blame]
diff --git a/programs/ssl/ssl_server2.c b/programs/ssl/ssl_server2.c
index d20d1fa..f95c151 100644
--- a/programs/ssl/ssl_server2.c
+++ b/programs/ssl/ssl_server2.c

@@ -4008,10 +4008,6 @@
 #endif /* MBEDTLS_KEY_EXCHANGE_SOME_PSK_ENABLED &&
           MBEDTLS_USE_PSA_CRYPTO */
 
-    mbedtls_ssl_free( &ssl );
-    mbedtls_ssl_config_free( &conf );
-    rng_free( &rng );
-
 #if defined(MBEDTLS_SSL_CACHE_C)
     mbedtls_ssl_cache_free( &cache );
 #endif
@@ -4022,16 +4018,7 @@
     mbedtls_ssl_cookie_free( &cookie_ctx );
 #endif
 
-    mbedtls_free( buf );
-
-#if defined(MBEDTLS_SSL_CONTEXT_SERIALIZATION)
-    if( context_buf != NULL )
-        mbedtls_platform_zeroize( context_buf, context_buf_len );
-    mbedtls_free( context_buf );
-#endif
-
 #if defined(MBEDTLS_USE_PSA_CRYPTO)
-    mbedtls_psa_crypto_free( );
     const char* message = mbedtls_test_helper_is_psa_leaking();
     if( message )
     {
@@ -4041,6 +4028,25 @@
     }
 #endif
 
+    /* For builds with MBEDTLS_TEST_USE_PSA_CRYPTO_RNG psa crypto
+     * resources are freed by rng_free(). */
+#if defined(MBEDTLS_USE_PSA_CRYPTO) && \
+    !defined(MBEDTLS_TEST_USE_PSA_CRYPTO_RNG)
+    mbedtls_psa_crypto_free( );
+#endif
+
+    mbedtls_ssl_free( &ssl );
+    mbedtls_ssl_config_free( &conf );
+    rng_free( &rng );
+
+    mbedtls_free( buf );
+
+#if defined(MBEDTLS_SSL_CONTEXT_SERIALIZATION)
+    if( context_buf != NULL )
+        mbedtls_platform_zeroize( context_buf, context_buf_len );
+    mbedtls_free( context_buf );
+#endif
+
 #if defined(MBEDTLS_TEST_HOOKS)
     /* Let test hooks detect errors such as resource leaks.
      * Don't do it in query_config mode, because some test code prints
commit	bbb22bbd9e42e76f5899fd14d57413a6512fcf55	[log] [tgz]
author	Przemyslaw Stekiel <przemyslaw.stekiel@mobica.com>	Wed Nov 03 09:06:09 2021 +0100
committer	Przemyslaw Stekiel <przemyslaw.stekiel@mobica.com>	Wed Nov 03 09:06:09 2021 +0100
tree	3a47368852da4940f98fdc729865a6b83dc4ed4c
parent	fed825a9aaabf9f66066ce2a71f44404e2f69a39 [diff] [blame]