Fix mem leak in TLSX_CA_Names_Parse

2023-10-27 07:58:50 -05:00 · 2023-10-27 07:58:50 -05:00 · 6b0e28f840
commit 6b0e28f840
parent 45ba778692
1 changed files with 10 additions and 6 deletions
--- a/src/tls.c
+++ b/src/tls.c
@ -6677,13 +6677,17 @@ static int TLSX_CA_Names_Parse(WOLFSSL *ssl, const byte* input,
        DecodedCert cert[1];
 #endif

-        if (length < OPAQUE16_LEN)
-            return BUFFER_ERROR;
-        ato16(input, &extLen);
-        idx += OPAQUE16_LEN;
-
-        if (idx + extLen > length)
+        if (length < OPAQUE16_LEN) {
            ret = BUFFER_ERROR;
+        }
+
+        if (ret == 0) {
+            ato16(input, &extLen);
+            idx += OPAQUE16_LEN;
+
+            if (idx + extLen > length)
+                ret = BUFFER_ERROR;
+        }

        if (ret == 0) {
            InitDecodedCert(cert, input + idx, extLen, ssl->heap);