Skip to content
Commit 6f137370 authored by Matt Caswell's avatar Matt Caswell
Browse files

Client side CKE processing can double free on error



The tls_client_key_exchange_post_work() frees the pms on error. It also
calls ssl_generate_master_secret() which also free the pms. If an error
occurs after ssl_generate_master_secret() has been called then a double
free can occur.

Reviewed-by: default avatarAndy Polyakov <appro@openssl.org>
parent b8f1c116
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment