Demonstrate safe usage (zeroize) in ssl_client2

This commit is contained in:
Manuel Pégourié-Gonnard 2019-05-24 10:26:41 +02:00 committed by Jarno Lamsa
parent 6472263ead
commit 4d591d6d3f

View File

@ -2459,8 +2459,12 @@ int main( int argc, char *argv[] )
if( opt.reco_mode == 1 )
{
/* free any previously saved data */
if( session_data != NULL )
{
mbedtls_platform_zeroize( session_data, session_data_len );
mbedtls_free( session_data );
session_data = NULL;
}
/* get size of the buffer needed */
mbedtls_ssl_session_save( mbedtls_ssl_get_session_pointer( &ssl ),
@ -3024,6 +3028,8 @@ exit:
mbedtls_ssl_config_free( &conf );
mbedtls_ctr_drbg_free( &ctr_drbg );
mbedtls_entropy_free( &entropy );
if( session_data != NULL )
mbedtls_platform_zeroize( session_data, session_data_len );
mbedtls_free( session_data );
#if defined(MBEDTLS_KEY_EXCHANGE__SOME__PSK_ENABLED) && \