Skip to content

Commit

Permalink
Scope reduction to enable NULL check to protect dereferencing.
Browse files Browse the repository at this point in the history 
Signed-off-by: sander-visser <[email protected]>
  • Loading branch information
@sander-visser
sander-visser committed May 6, 2020
1 parent 5435451 commit b8aa207
Showing 1 changed file with 12 additions and 8 deletions.
20 changes: 12 additions & 8 deletions library/ssl_tls.c
View file
Original file line number Diff line number Diff line change
Expand Up @@ -6661,28 +6661,32 @@ int mbedtls_ssl_context_load( mbedtls_ssl_context *context,
*/
void mbedtls_ssl_free( mbedtls_ssl_context *ssl )
{
#if defined(MBEDTLS_SSL_VARIABLE_BUFFER_LENGTH)
size_t in_buf_len = ssl->in_buf_len;
size_t out_buf_len = ssl->out_buf_len;
#else
size_t in_buf_len = MBEDTLS_SSL_IN_BUFFER_LEN;
size_t out_buf_len = MBEDTLS_SSL_OUT_BUFFER_LEN;
#endif

if( ssl == NULL )
return;

MBEDTLS_SSL_DEBUG_MSG( 2, ( "=> free" ) );

if( ssl->out_buf != NULL )
{
#if defined(MBEDTLS_SSL_VARIABLE_BUFFER_LENGTH)
size_t out_buf_len = ssl->out_buf_len;
#else
size_t out_buf_len = MBEDTLS_SSL_OUT_BUFFER_LEN;
#endif

mbedtls_platform_zeroize( ssl->out_buf, out_buf_len );
mbedtls_free( ssl->out_buf );
ssl->out_buf = NULL;
}

if( ssl->in_buf != NULL )
{
#if defined(MBEDTLS_SSL_VARIABLE_BUFFER_LENGTH)
size_t in_buf_len = ssl->in_buf_len;
#else
size_t in_buf_len = MBEDTLS_SSL_IN_BUFFER_LEN;
#endif

mbedtls_platform_zeroize( ssl->in_buf, in_buf_len );
mbedtls_free( ssl->in_buf );
ssl->in_buf = NULL;
Expand Down

0 comments on commit b8aa207

Please sign in to comment.