Fix coverity defect

The returned chain persists after the ctx structure is freed,
when it is no longer needed it should be free up using.

Change-Id: I2b25f94d1c5492e304f6b5d82a072b0e80e40165
Signed-off-by: Sangwan Kwon <sangwan.kwon@samsung.com>

diff --git a/src/curl/tpkp_curl.cpp b/src/curl/tpkp_curl.cpp
index 0d288483d300bdce57bbadf5790ecac183705e64..2e7dd0a2c48635f33b8ac577634ae5b53b68804c 100644 (file)
--- a/src/curl/tpkp_curl.cpp
+++ b/src/curl/tpkp_curl.cpp
@@ -139,6 +139,8 @@ int tpkp_curl_verify_callback(int preverify_ok, X509_STORE_CTX *x509_ctx)
                                TPKP::HashAlgo::DEFAULT,
                                getPubkeyHash(sk_X509_value(chain, i), TPKP::HashAlgo::DEFAULT));
 
+               sk_X509_pop_free(chain, X509_free);
+
                bool isMatched = ctx.checkPubkeyPins();
 
                /* update decision cache */