libfreerdp-crypto: fix openssl null pointer dereferencing in tls_accept

2026-04-15 00:44:19 +09:00 · 2013-05-30 19:44:58 -04:00
parent 7cf9526a78
commit 2a08093e60
1 changed files with 17 additions and 17 deletions
--- a/libfreerdp/crypto/tls.c
+++ b/libfreerdp/crypto/tls.c
@@ -270,23 +270,6 @@ BOOL tls_accept(rdpTls* tls, const char* cert_file, const char* privatekey_file)
 		return FALSE;
 	}

-	cert = tls_get_certificate(tls, FALSE);
-
-	if (!cert)
-	{
-		fprintf(stderr, "tls_connect: tls_get_certificate failed to return the server certificate.\n");
-		return FALSE;
-	}
-
-	if (!crypto_cert_get_public_key(cert, &tls->PublicKey, &tls->PublicKeyLength))
-	{
-		fprintf(stderr, "tls_connect: crypto_cert_get_public_key failed to return the server public key.\n");
-		tls_free_certificate(cert);
-		return FALSE;
-	}
-
-	free(cert);
-
 	if (SSL_set_fd(tls->ssl, tls->sockfd) < 1)
 	{
 		fprintf(stderr, "SSL_set_fd failed\n");
@@ -318,6 +301,23 @@ BOOL tls_accept(rdpTls* tls, const char* cert_file, const char* privatekey_file)
 		}
 	}

+	cert = tls_get_certificate(tls, FALSE);
+
+	if (!cert)
+	{
+		fprintf(stderr, "tls_connect: tls_get_certificate failed to return the server certificate.\n");
+		return FALSE;
+	}
+
+	if (!crypto_cert_get_public_key(cert, &tls->PublicKey, &tls->PublicKeyLength))
+	{
+		fprintf(stderr, "tls_connect: crypto_cert_get_public_key failed to return the server public key.\n");
+		tls_free_certificate(cert);
+		return FALSE;
+	}
+
+	free(cert);
+
 	fprintf(stderr, "TLS connection accepted\n");

 	return TRUE;