Fix memory leak when parsing X509 certs (#2010)

nanoframework · Aug 13, 2021 · 261206d · 261206d
1 parent 5382143
commit 261206d
Showing 1 changed file with 3 additions and 0 deletions.
diff --git a/src/PAL/COM/sockets/ssl/mbedTLS/ssl_parse_certificate_internal.cpp b/src/PAL/COM/sockets/ssl/mbedTLS/ssl_parse_certificate_internal.cpp
@@ -37,6 +37,7 @@ bool ssl_parse_certificate_internal(void *certificate, size_t size, void *pwd, v
     ret = mbedtls_x509_crt_parse(&cacert, (const unsigned char *)certificate, size);
     if (ret < 0)
     {
+        mbedtls_x509_crt_free(&cacert);
         return false;
     }
 
@@ -48,5 +49,7 @@ bool ssl_parse_certificate_internal(void *certificate, size_t size, void *pwd, v
 
     SSL_GetCertDateTime_internal(&x509->ExpirationDate, &cacert.valid_to);
 
+    mbedtls_x509_crt_free(&cacert);
+
     return true;
 }