Fix potential memory leak on error in LoadCRL()

If ProcessFile() fails, the code does not clean up readCtx. Perform the same cleanup as after the loop to fix this.
wolfSSL · Feb 3, 2025 · a0e4fcb · a0e4fcb
1 parent 275beca
commit a0e4fcb
Showing 1 changed file with 4 additions and 0 deletions.
diff --git a/src/crl.c b/src/crl.c
@@ -1776,6 +1776,10 @@ int LoadCRL(WOLFSSL_CRL* crl, const char* path, int type, int monitor)
             ret = ProcessFile(NULL, name, type, CRL_TYPE, NULL, 0, crl, VERIFY);
             if (ret != WOLFSSL_SUCCESS) {
                 WOLFSSL_MSG("CRL file load failed");
+                wc_ReadDirClose(readCtx);
+#ifdef WOLFSSL_SMALL_STACK
+                XFREE(readCtx, crl->heap, DYNAMIC_TYPE_TMP_BUFFER);
+#endif
                 return ret;
             }
         }