TrustedFirmware Git Browser
Code Review Sign In
review.trustedfirmware.org / mirror / mbed-tls / d6914e3196909a00fe0ade7af64c0a921ebd0b96^! / . / programs / ssl / ssl_client2.c
commitd6914e3196909a00fe0ade7af64c0a921ebd0b96[log] [tgz]
authorPrzemyslaw Stekiel <przemyslaw.stekiel@mobica.com>Wed Nov 10 10:46:11 2021 +0100
committerPrzemyslaw Stekiel <przemyslaw.stekiel@mobica.com>Wed Nov 10 10:46:11 2021 +0100
treea9e5b523321cb39bf85b8b5d7599965fdd0e7124
parent505712338ea7ac8661026c2acd8f8ccb310c7e01 [diff] [blame]
ssl_client2/ssl_server2: Rework ordering of cleanup

Signed-off-by: Przemyslaw Stekiel <przemyslaw.stekiel@mobica.com>

diff --git a/programs/ssl/ssl_client2.c b/programs/ssl/ssl_client2.c
index 4360fd3..01459c0 100644
--- a/programs/ssl/ssl_client2.c
+++ b/programs/ssl/ssl_client2.c

@@ -3019,6 +3019,19 @@
 
     mbedtls_net_free( &server_fd );
 
+    mbedtls_ssl_free( &ssl );
+    mbedtls_ssl_config_free( &conf );
+    mbedtls_ssl_session_free( &saved_session );
+
+    if( session_data != NULL )
+        mbedtls_platform_zeroize( session_data, session_data_len );
+    mbedtls_free( session_data );
+#if defined(MBEDTLS_SSL_CONTEXT_SERIALIZATION)
+    if( context_buf != NULL )
+        mbedtls_platform_zeroize( context_buf, context_buf_len );
+    mbedtls_free( context_buf );
+#endif
+
 #if defined(MBEDTLS_X509_CRT_PARSE_C)
     mbedtls_x509_crt_free( &clicert );
     mbedtls_x509_crt_free( &cacert );
@@ -3049,10 +3062,6 @@
 #endif /* MBEDTLS_KEY_EXCHANGE_SOME_PSK_ENABLED &&
           MBEDTLS_USE_PSA_CRYPTO */
 
-    mbedtls_ssl_session_free( &saved_session );
-    mbedtls_ssl_free( &ssl );
-    mbedtls_ssl_config_free( &conf );
-
 #if defined(MBEDTLS_USE_PSA_CRYPTO)
     const char* message = mbedtls_test_helper_is_psa_leaking();
     if( message )
@@ -3071,14 +3080,6 @@
 #endif
 
     rng_free( &rng );
-    if( session_data != NULL )
-        mbedtls_platform_zeroize( session_data, session_data_len );
-    mbedtls_free( session_data );
-#if defined(MBEDTLS_SSL_CONTEXT_SERIALIZATION)
-    if( context_buf != NULL )
-        mbedtls_platform_zeroize( context_buf, context_buf_len );
-    mbedtls_free( context_buf );
-#endif
 
 #if defined(MBEDTLS_TEST_HOOKS)
     if( test_hooks_failure_detected( ) )