Adapt ssl_clear_peer_cert() to removal of `peer_cert` field

commit: 506289750783774dc6c93b1369141288a455f3df [log] [tgz]
author: Hanno Becker <hanno.becker@arm.com> Thu Feb 07 13:17:53 2019 +0000
committer: Hanno Becker <hanno.becker@arm.com> Wed Jun 19 10:25:02 2019 +0100
tree: 62b011580ab60b6c4500b9897b1f609c526944df
parent: d5258faa29c9e36608a0aedd5ef99365fc0dbb4f [diff] [blame]
diff --git a/library/ssl_tls.c b/library/ssl_tls.c
index 40d5975..fff5e9d 100644
--- a/library/ssl_tls.c
+++ b/library/ssl_tls.c

@@ -6189,14 +6189,14 @@
 
 static void ssl_clear_peer_cert( mbedtls_ssl_session *session )
 {
+#if defined(MBEDTLS_SSL_KEEP_PEER_CERTIFICATE)
     if( session->peer_cert != NULL )
     {
         mbedtls_x509_crt_free( session->peer_cert );
         mbedtls_free( session->peer_cert );
         session->peer_cert = NULL;
     }
-
-#if !defined(MBEDTLS_SSL_KEEP_PEER_CERTIFICATE)
+#else
     if( session->peer_cert_digest != NULL )
     {
         /* Zeroization is not necessary. */
@@ -6205,7 +6205,7 @@
         session->peer_cert_digest_type = MBEDTLS_MD_NONE;
         session->peer_cert_digest_len  = 0;
     }
-#endif /* MBEDTLS_SSL_KEEP_PEER_CERTIFICATE */
+#endif /* !MBEDTLS_SSL_KEEP_PEER_CERTIFICATE */
 }
 
 /*
commit	506289750783774dc6c93b1369141288a455f3df	[log] [tgz]
author	Hanno Becker <hanno.becker@arm.com>	Thu Feb 07 13:17:53 2019 +0000
committer	Hanno Becker <hanno.becker@arm.com>	Wed Jun 19 10:25:02 2019 +0100
tree	62b011580ab60b6c4500b9897b1f609c526944df
parent	d5258faa29c9e36608a0aedd5ef99365fc0dbb4f [diff] [blame]