oysteikt/heimdal
0
0
Fork 0
Code Issues 5 Pull Requests Releases Activity

gss-token: Fix acceptor context leak

Browse Source
This commit is contained in:
Nicolas Williams
2022-12-05 23:01:32 -06:00
parent f0feaab938
commit 674696151a
1 changed files with 7 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

8
lib/gssapi/gss-token.c
View File

@@ -472,8 +472,13 @@ accept_one(gss_name_t service, const char *ccname, int negotiate)
NULL, NULL, &deleg_creds); NULL, NULL, &deleg_creds);
ret = write_and_free_token(&out, negotiate); ret = write_and_free_token(&out, negotiate);
if (ret) if (ret) {
OM_uint32 junk;
(void) gss_delete_sec_context(&junk, &ctx,
GSS_C_NO_BUFFER);
return ret; return ret;
}
GBAIL("gss_accept_sec_context", maj, min); GBAIL("gss_accept_sec_context", maj, min);
} while (maj & GSS_S_CONTINUE_NEEDED); } while (maj & GSS_S_CONTINUE_NEEDED);
@@ -491,6 +496,7 @@ accept_one(gss_name_t service, const char *ccname, int negotiate)
(char *)dname.value); (char *)dname.value);
(void) gss_release_buffer(&min, &dname); (void) gss_release_buffer(&min, &dname);
(void) gss_release_name(&min, &client); (void) gss_release_name(&min, &client);
(void) gss_delete_sec_context(&min, &ctx, GSS_C_NO_BUFFER);
if (ccname) { if (ccname) {
#ifdef HAVE_GSS_STORE_CRED_INTO #ifdef HAVE_GSS_STORE_CRED_INTO