Commit a6a83827 authored by Matt Caswell's avatar Matt Caswell
Browse files

Fix a DTLS memory leak 



Fixes #7428

Reviewed-by: default avatarPaul Dale <paul.dale@oracle.com>
(Merged from https://github.com/openssl/openssl/pull/7431)

(cherry picked from commit 01666a8c1db3ecfb999e1a8f2c5436d114f95681)
parent a66c361a

ssl/statem/statem_srvr.c

+3 −1
Original line number Diff line number Diff line
@@ -1519,10 +1519,12 @@ MSG_PROCESS_RETURN tls_process_client_hello(SSL *s, PACKET *pkt) 
             * So check cookie length...

             */

            if (SSL_get_options(s) & SSL_OP_COOKIE_EXCHANGE) {

                if (clienthello->dtls_cookie_len == 0)

                if (clienthello->dtls_cookie_len == 0) {

                    OPENSSL_free(clienthello);

                    return MSG_PROCESS_FINISHED_READING;

                }

            }

        }



        if (!PACKET_get_length_prefixed_2(pkt, &clienthello->ciphersuites)) {

            SSLfatal(s, SSL_AD_DECODE_ERROR, SSL_F_TLS_PROCESS_CLIENT_HELLO,