OPENSSL_clear_free(sc->s3.tmp.pms, sc->s3.tmp.pmslen);
OPENSSL_free(sc->s3.tmp.peer_sigalgs);
OPENSSL_free(sc->s3.tmp.peer_cert_sigalgs);
+ OPENSSL_free(sc->s3.tmp.valid_flags);
ssl3_free_digest_list(sc);
OPENSSL_free(sc->s3.alpn_selected);
OPENSSL_free(sc->s3.alpn_proposed);
OPENSSL_clear_free(sc->s3.tmp.pms, sc->s3.tmp.pmslen);
OPENSSL_free(sc->s3.tmp.peer_sigalgs);
OPENSSL_free(sc->s3.tmp.peer_cert_sigalgs);
+ OPENSSL_free(sc->s3.tmp.valid_flags);
EVP_PKEY_free(sc->s3.tmp.pkey);
EVP_PKEY_free(sc->s3.peer_tmp);
if (SSL_CONNECTION_IS_TLS13(s)) {
#ifndef OPENSSL_NO_PSK
- int j;
+ size_t j;
/*
* If we allow "old" style PSK callbacks, and we have no certificate (so
* that.
*/
if (s->psk_server_callback != NULL) {
- for (j = 0; j < SSL_PKEY_NUM && !ssl_has_cert(s, j); j++);
- if (j == SSL_PKEY_NUM) {
+ for (j = 0; j < s->ssl_pkey_num && !ssl_has_cert(s, j); j++);
+ if (j == s->ssl_pkey_num) {
/* There are no certificates */
prefer_sha256 = 1;
}