mem-cleanup, cont'd.

[openssl.git] / ssl / ssl_lib.c
diff --git a/ssl/ssl_lib.c b/ssl/ssl_lib.c

index 3ca7c3ffa69661f5fa2b9c0845d007d33ad60b03..909b23ef6f3fbc6d3177c30f2c412b8f4a3eb1af 100644 (file)
--- a/ssl/ssl_lib.c
+++ b/ssl/ssl_lib.c
@@ -344,8 +344,8 @@ SSL *SSL_new(SSL_CTX *ctx)
  # ifndef OPENSSL_NO_EC
      if (ctx->tlsext_ecpointformatlist) {
          s->tlsext_ecpointformatlist =
-            BUF_memdup(ctx->tlsext_ecpointformatlist,
-                       ctx->tlsext_ecpointformatlist_length);
+            OPENSSL_memdup(ctx->tlsext_ecpointformatlist,
+                           ctx->tlsext_ecpointformatlist_length);
          if (!s->tlsext_ecpointformatlist)
              goto err;
          s->tlsext_ecpointformatlist_length =
@@ -353,8 +353,8 @@ SSL *SSL_new(SSL_CTX *ctx)
      }
      if (ctx->tlsext_ellipticcurvelist) {
          s->tlsext_ellipticcurvelist =
-            BUF_memdup(ctx->tlsext_ellipticcurvelist,
-                       ctx->tlsext_ellipticcurvelist_length);
+            OPENSSL_memdup(ctx->tlsext_ellipticcurvelist,
+                           ctx->tlsext_ellipticcurvelist_length);
          if (!s->tlsext_ellipticcurvelist)
              goto err;
          s->tlsext_ellipticcurvelist_length =
@@ -2001,7 +2001,9 @@ void SSL_set_cert_cb(SSL *s, int (*cb) (SSL *ssl, void *arg), void *arg)
  
  void ssl_set_masks(SSL *s, const SSL_CIPHER *cipher)
  {
+#if !defined(OPENSSL_NO_EC) || !defined(OPENSSL_NO_GOST)
      CERT_PKEY *cpk;
+#endif
      CERT *c = s->cert;
      uint32_t *pvalid = s->s3->tmp.valid_flags;
      int rsa_enc, rsa_sign, dh_tmp, dh_rsa, dh_dsa, dsa_sign;
@@ -2021,17 +2023,11 @@ void ssl_set_masks(SSL *s, const SSL_CIPHER *cipher)
      dh_tmp = 0;
  #endif
  
-    cpk = &(c->pkeys[SSL_PKEY_RSA_ENC]);
      rsa_enc = pvalid[SSL_PKEY_RSA_ENC] & CERT_PKEY_VALID;
-    cpk = &(c->pkeys[SSL_PKEY_RSA_SIGN]);
      rsa_sign = pvalid[SSL_PKEY_RSA_SIGN] & CERT_PKEY_SIGN;
-    cpk = &(c->pkeys[SSL_PKEY_DSA_SIGN]);
      dsa_sign = pvalid[SSL_PKEY_DSA_SIGN] & CERT_PKEY_SIGN;
-    cpk = &(c->pkeys[SSL_PKEY_DH_RSA]);
      dh_rsa = pvalid[SSL_PKEY_DH_RSA] & CERT_PKEY_VALID;
-    cpk = &(c->pkeys[SSL_PKEY_DH_DSA]);
      dh_dsa = pvalid[SSL_PKEY_DH_DSA] & CERT_PKEY_VALID;
-    cpk = &(c->pkeys[SSL_PKEY_ECC]);
  #ifndef OPENSSL_NO_EC
      have_ecc_cert = pvalid[SSL_PKEY_ECC] & CERT_PKEY_VALID;
  #endif
@@ -3046,7 +3042,7 @@ int SSL_CTX_use_psk_identity_hint(SSL_CTX *ctx, const char *identity_hint)
      }
      OPENSSL_free(ctx->cert->psk_identity_hint);
      if (identity_hint != NULL) {
-        ctx->cert->psk_identity_hint = BUF_strdup(identity_hint);
+        ctx->cert->psk_identity_hint = OPENSSL_strdup(identity_hint);
          if (ctx->cert->psk_identity_hint == NULL)
              return 0;
      } else
@@ -3065,7 +3061,7 @@ int SSL_use_psk_identity_hint(SSL *s, const char *identity_hint)
      }
      OPENSSL_free(s->cert->psk_identity_hint);
      if (identity_hint != NULL) {
-        s->cert->psk_identity_hint = BUF_strdup(identity_hint);
+        s->cert->psk_identity_hint = OPENSSL_strdup(identity_hint);
          if (s->cert->psk_identity_hint == NULL)
              return 0;
      } else