Fixed potential memory leak when failing to resume a session Conflicts: ChangeLog library/ssl_tls.c

commit: df177ba72881f6fa479614bc306034da5e81065f [log] [tgz]
author: Paul Bakker <p.j.bakker@polarssl.org> Wed Sep 11 11:45:41 2013 +0200
committer: Paul Bakker <p.j.bakker@polarssl.org> Wed Sep 11 13:22:52 2013 +0200
tree: bda5917966eed3fe83b032e3de57fd8416c16034
parent: 16e5f81473c91033bae64963b5a2f86b2b8adeb2 [diff]
diff --git a/ChangeLog b/ChangeLog
index 9e8eb0b..60ef749 100644
--- a/ChangeLog
+++ b/ChangeLog

@@ -1,6 +1,9 @@
 PolarSSL ChangeLog
 
 = Branch 1.1
+Bugfix
+   * Fixed potential memory leak when failing to resume a session
+
 Security
    * Potential buffer-overflow for ssl_read_record() (independently found by
      both TrustInSoft and Paul Brodeur of Leviathan Security Group)

diff --git a/library/ssl_tls.c b/library/ssl_tls.c
index a5d1cb1..73a6604 100644
--- a/library/ssl_tls.c
+++ b/library/ssl_tls.c

@@ -1444,6 +1444,13 @@
         return( POLARSSL_ERR_SSL_BAD_HS_CERTIFICATE );
     }
 
+    /* In case we tried to reuse a session but it failed */
+    if( ssl->peer_cert != NULL )
+    {
+        x509_free( ssl->peer_cert );
+        free( ssl->peer_cert );
+    }
+
     if( ( ssl->peer_cert = (x509_cert *) malloc(
                     sizeof( x509_cert ) ) ) == NULL )
     {
commit	df177ba72881f6fa479614bc306034da5e81065f	[log] [tgz]
author	Paul Bakker <p.j.bakker@polarssl.org>	Wed Sep 11 11:45:41 2013 +0200
committer	Paul Bakker <p.j.bakker@polarssl.org>	Wed Sep 11 13:22:52 2013 +0200
tree	bda5917966eed3fe83b032e3de57fd8416c16034
parent	16e5f81473c91033bae64963b5a2f86b2b8adeb2 [diff]