From 116f50cd963b24534963c1bb0ffa788a43d6109a Mon Sep 17 00:00:00 2001
From: Leonid Rozenboim <leonid.rozenboim@oracle.com>
Date: Thu, 21 Apr 2022 13:05:10 -0700
Subject: [PATCH] Fix resource leaks

These potential leaks were flagged by the Coverity static analyzer.

Signed-off-by: Leonid Rozenboim <leonid.rozenboim@oracle.com>
---
 library/pkparse.c   | 4 +++-
 library/ssl_cache.c | 4 ++++
 2 files changed, 7 insertions(+), 1 deletion(-)

diff --git a/library/pkparse.c b/library/pkparse.c
index 68727ec7e..bb5824fc3 100644
--- a/library/pkparse.c
+++ b/library/pkparse.c
@@ -1456,8 +1456,10 @@ int mbedtls_pk_parse_public_key( mbedtls_pk_context *ctx,
         if( ( pk_info = mbedtls_pk_info_from_type( MBEDTLS_PK_RSA ) ) == NULL )
             return( MBEDTLS_ERR_PK_UNKNOWN_PK_ALG );
 
-        if( ( ret = mbedtls_pk_setup( ctx, pk_info ) ) != 0 )
+        if( ( ret = mbedtls_pk_setup( ctx, pk_info ) ) != 0 ) {
+            mbedtls_pem_free( &pem );
             return( ret );
+        }
 
         if ( ( ret = pk_get_rsapubkey( &p, p + pem.buflen, mbedtls_pk_rsa( *ctx ) ) ) != 0 )
             mbedtls_pk_free( ctx );
diff --git a/library/ssl_cache.c b/library/ssl_cache.c
index fe4f30cf8..456f41cef 100644
--- a/library/ssl_cache.c
+++ b/library/ssl_cache.c
@@ -312,7 +312,11 @@ exit:
 #endif
 
     if( session_serialized != NULL )
+    {
         mbedtls_platform_zeroize( session_serialized, session_serialized_len );
+        mbedtls_free(session_serialized);
+        session_serialized = NULL;
+    }
 
     return( ret );
 }