Diff - d515722d2291703589b55661f805e73193524914^! - boringssl

commit	d515722d2291703589b55661f805e73193524914	[log] [tgz]
author	Adam Langley <agl@google.com>	Mon Dec 12 11:37:43 2016 -0800
committer	CQ bot account: commit-bot@chromium.org <commit-bot@chromium.org>	Tue Dec 13 21:27:31 2016 +0000
tree	f6e10fb8968ce0580a7499275d1ba535b36ab7c0
parent	d519bf6be0b447fb80fbc539d4bff4479b5482a2 [diff] [blame]

Don't depend on the X509 code for getting public keys.

This change removes the use of |X509_get_pubkey| from the TLS <= 1.2
code. That function is replaced with a shallow parse of the certificate
to extract the public key instead.

Change-Id: I8938c6c5a01b32038c6b6fa58eb065e5b44ca6d2
Reviewed-on: https://boringssl-review.googlesource.com/12707
Reviewed-by: Adam Langley <agl@google.com>
Commit-Queue: Adam Langley <agl@google.com>
CQ-Verified: CQ bot account: commit-bot@chromium.org <commit-bot@chromium.org>

diff --git a/ssl/s3_both.c b/ssl/s3_both.c
index eeccab1..4800f92 100644
--- a/ssl/s3_both.c
+++ b/ssl/s3_both.c

@@ -171,6 +171,7 @@
   }
 
   OPENSSL_free(hs->hostname);
+  EVP_PKEY_free(hs->peer_pubkey);
   OPENSSL_free(hs);
 }