Commit d1247df2 authored by Matt Caswell's avatar Matt Caswell
Browse files

Ensure that memory allocated for the ticket is freed 



If a call to EVP_DecryptUpdate fails then a memory leak could occur.
Ensure that the memory is freed appropriately.

Issue reported by Guido Vranken.

Reviewed-by: default avatarRichard Levitte <levitte@openssl.org>
parent ffe9150b

ssl/t1_lib.c

+1 −0
Original line number Diff line number Diff line
@@ -3162,6 +3162,7 @@ static int tls_decrypt_ticket(SSL *s, const unsigned char *etick, 
    if (sdec == NULL

            || EVP_DecryptUpdate(ctx, sdec, &slen, p, eticklen) <= 0) {

        EVP_CIPHER_CTX_free(ctx);

        OPENSSL_free(sdec);

        return -1;

    }

    if (EVP_DecryptFinal(ctx, sdec + slen, &mlen) <= 0) {