From 912b20c4d7e714b08852a3b9d48d7ba7548ed25d Mon Sep 17 00:00:00 2001
From: Jeffrey Altman <jaltman@secure-endpoints.com>
Date: Fri, 21 Jan 2022 00:31:56 -0500
Subject: [PATCH] kadmin: refactor set_random_password

Obtain the unparsed principal name early so that there is no
risk of memory allocation failure after kadm5_chpass_principal_3()
succeeds.

Change-Id: I389281004826da5752081c2f26127d55e3dc3989
---
 kadmin/cpw.c | 16 ++++++++--------
 1 file changed, 8 insertions(+), 8 deletions(-)

diff --git a/kadmin/cpw.c b/kadmin/cpw.c
index d254add44..2f3c1c1bc 100644
--- a/kadmin/cpw.c
+++ b/kadmin/cpw.c
@@ -65,17 +65,17 @@ set_random_password (krb5_principal principal, int keepold)
 {
     krb5_error_code ret;
     char pw[128];
+    char *princ_name;
 
-    random_password (pw, sizeof(pw));
+    ret = krb5_unparse_name(context, principal, &princ_name);
+    if (ret)
+	return ret;
+
+    random_password(pw, sizeof(pw));
     ret = kadm5_chpass_principal_3(kadm_handle, principal, keepold, 0, NULL, pw);
-    if (ret == 0) {
-	char *princ_name;
-
-	krb5_unparse_name(context, principal, &princ_name);
-
+    if (ret == 0)
 	printf ("%s's password set to \"%s\"\n", princ_name, pw);
-	free (princ_name);
-    }
+    free(princ_name);
     memset_s(pw, sizeof(pw), 0, sizeof(pw));
     return ret;
 }