Fixes from overnight build failures

ssl.c: Certificate store fields freed without being NULLed and then freed again. integer.c: Compiler complained that a->dp may be NULL in mp_set_bit when setting bit. pkcs12.c: ret is zero after GetLength and this is an error but data is freed only when ret != 0. pkcs7.c: derArr was not zeroized for full allocated size.
2026-01-30 15:02:17 +01:00 · 2019-09-16 10:21:08 +10:00
parent 9d69f17f17
commit 000fc64f27
4 changed files with 16 additions and 23 deletions
--- a/src/ssl.c
+++ b/src/ssl.c
@@ -21277,22 +21277,22 @@ WOLFSSL_X509_STORE* wolfSSL_X509_STORE_new(void)
 {
    WOLFSSL_X509_STORE* store = NULL;

-    if((store = (WOLFSSL_X509_STORE*)XMALLOC(sizeof(WOLFSSL_X509_STORE), NULL,
-                            DYNAMIC_TYPE_X509_STORE)) == NULL)
+    if ((store = (WOLFSSL_X509_STORE*)XMALLOC(sizeof(WOLFSSL_X509_STORE), NULL,
+                                    DYNAMIC_TYPE_X509_STORE)) == NULL)
        goto err_exit;

    XMEMSET(store, 0, sizeof(WOLFSSL_X509_STORE));
    store->isDynamic = 1;

-    if((store->cm = wolfSSL_CertManagerNew()) == NULL)
+    if ((store->cm = wolfSSL_CertManagerNew()) == NULL)
        goto err_exit;

 #ifdef HAVE_CRL
    store->crl = NULL;
-    if((store->crl = (WOLFSSL_X509_CRL *)XMALLOC(sizeof(WOLFSSL_X509_CRL),
-                                NULL, DYNAMIC_TYPE_TMP_BUFFER)) == NULL)
+    if ((store->crl = (WOLFSSL_X509_CRL *)XMALLOC(sizeof(WOLFSSL_X509_CRL),
+                                        NULL, DYNAMIC_TYPE_TMP_BUFFER)) == NULL)
        goto err_exit;
-    if(InitCRL(store->crl, NULL) < 0)
+    if (InitCRL(store->crl, NULL) < 0)
        goto err_exit;
 #endif

@@ -21307,19 +21307,9 @@ WOLFSSL_X509_STORE* wolfSSL_X509_STORE_new(void)
    return store;

 err_exit:
-    if(store == NULL)
+    if (store == NULL)
        return NULL;
-    if(store->cm != NULL)
-        wolfSSL_CertManagerFree(store->cm);
-#ifdef HAVE_CRL
-    if(store->crl != NULL)
-        wolfSSL_X509_CRL_free(store->crl);
-#endif
-#ifdef OPENSSL_EXTRA
-        if (store->param != NULL){
-            XFREE(store->param,NULL,DYNAMIC_TYPE_OPENSSL);
-        }
-#endif
+
    wolfSSL_X509_STORE_free(store);

    return NULL;
@@ -21336,9 +21326,8 @@ void wolfSSL_X509_STORE_free(WOLFSSL_X509_STORE* store)
            wolfSSL_X509_CRL_free(store->crl);
 #endif
 #ifdef OPENSSL_EXTRA
-        if (store->param != NULL){
-            XFREE(store->param,NULL,DYNAMIC_TYPE_OPENSSL);
-        }
+        if (store->param != NULL)
+            XFREE(store->param, NULL, DYNAMIC_TYPE_OPENSSL);
 #endif
        XFREE(store, NULL, DYNAMIC_TYPE_X509_STORE);
    }