free old peer RSA key in secure renegotiation when getting new one

2019-07-10 17:07:16 -06:00 · 2019-07-10 17:07:16 -06:00 · a6cc9af1fc
commit a6cc9af1fc
parent 6c9fac2a71
1 changed files with 9 additions and 0 deletions
--- a/src/internal.c
+++ b/src/internal.c
@ -10102,6 +10102,15 @@ int ProcessPeerCerts(WOLFSSL* ssl, byte* input, word32* inOutIdx,
                            ssl->peerRsaKeyPresent = 1;
                    #ifdef HAVE_PK_CALLBACKS
                        #ifndef NO_RSA
+                            #ifdef HAVE_SECURE_RENEGOTIATION
+                            if (ssl->buffers.peerRsaKey.buffer) {
+                                XFREE(ssl->buffers.peerRsaKey.buffer,
+                                        ssl->heap, DYNAMIC_TYPE_RSA);
+                                ssl->buffers.peerRsaKey.buffer = NULL;
+                            }
+                            #endif
+
+
                            ssl->buffers.peerRsaKey.buffer =
                                   (byte*)XMALLOC(args->dCert->pubKeySize,
                                                ssl->heap, DYNAMIC_TYPE_RSA);