sectransp: free certificate on error

author Christian Schmitz <support@monkeybreadsoftware.de>

Wed, 11 Dec 2024 10:48:20 +0000 (11:48 +0100)

committer Daniel Stenberg <daniel@haxx.se>

Wed, 11 Dec 2024 12:09:44 +0000 (13:09 +0100)
author Christian Schmitz <support@monkeybreadsoftware.de>
Wed, 11 Dec 2024 10:48:20 +0000 (11:48 +0100)
committer Daniel Stenberg <daniel@haxx.se>
Wed, 11 Dec 2024 12:09:44 +0000 (13:09 +0100)
diff --git a/lib/vtls/sectransp.c b/lib/vtls/sectransp.c

index c6a1c73dcf870fbc6eeb8705fa4f044491247753..1e1413f5f23c1d663615ad9d70028f7c528ba2c9 100644 (file)
--- a/lib/vtls/sectransp.c
+++ b/lib/vtls/sectransp.c
@@ -1504,9 +1504,11 @@ static CURLcode append_cert_to_array(struct Curl_easy *data,
        case CURLE_OK:
          break;
        case CURLE_PEER_FAILED_VERIFICATION:
+        CFRelease(cacert);
          return CURLE_SSL_CACERT_BADFILE;
        case CURLE_OUT_OF_MEMORY:
        default:
+        CFRelease(cacert);
          return result;
      }
      free(certp);
@@ -2424,7 +2426,7 @@ static CURLcode sectransp_shutdown(struct Curl_cfilter *cf,
    struct st_ssl_backend_data *backend =
      (struct st_ssl_backend_data *)connssl->backend;
    CURLcode result = CURLE_OK;
-  ssize_t nread;
+  ssize_t nread = 0;
    char buf[1024];
    size_t i;
author	Christian Schmitz <support@monkeybreadsoftware.de>
	Wed, 11 Dec 2024 10:48:20 +0000 (11:48 +0100)
committer	Daniel Stenberg <daniel@haxx.se>
	Wed, 11 Dec 2024 12:09:44 +0000 (13:09 +0100)