feedc0de/wolfssl
1
0
Fork 0
forked from wolfSSL/wolfssl
Code Pull Requests Activity

Merge pull request #7687 from douzzer/20240626-EvictSessionFromCache-ticketNonce-data-leak

Browse Source 
20240626-EvictSessionFromCache-ticketNonce-data-leak
This commit is contained in:
JacobBarthelmeh
2024-06-27 09:41:42 -06:00
committed by GitHub
parent 5420c1a081 4d43dbf83b
commit c047e55b92
1 changed files with 11 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

11
src/ssl_sess.c
View File

@@ -215,6 +215,17 @@
#ifdef HAVE_EX_DATA
session->ownExData = save_ownExData;
#endif
#if defined(WOLFSSL_TLS13) && defined(HAVE_SESSION_TICKET) && \
defined(WOLFSSL_TICKET_NONCE_MALLOC) && \
(!defined(HAVE_FIPS) || (defined(FIPS_VERSION_GE) && FIPS_VERSION_GE(5,3)))
if ((session->ticketNonce.data != NULL) &&
(session->ticketNonce.data != session->ticketNonce.dataStatic))
{
XFREE(session->ticketNonce.data, NULL, DYNAMIC_TYPE_SESSION_TICK);
session->ticketNonce.data = NULL;
}
#endif
}
WOLFSSL_ABI