oysteikt/heimdal
0
0
Fork 0
Code Issues 5 Pull Requests Releases Activity

gss: free user keytab before resolving system keytab

Browse Source 
get_client_keytab() leaked the user keytab if it resolved but we could not find
the client principal. Free it before trying the system keytab.
This commit is contained in:
Luke Howard
2020-04-16 07:19:35 +00:00
parent 9eab344d35
commit c70540480b
1 changed files with 7 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

8
lib/gssapi/krb5/acquire_cred.c
View File

@@ -157,8 +157,14 @@ get_client_keytab(krb5_context context,
krb5_kt_free_entry(context, &entry); krb5_kt_free_entry(context, &entry);
} }
if (ret) if (ret) {
if (*keytab) {
krb5_kt_close(context, *keytab);
*keytab = NULL;
}
ret = get_system_keytab(context, GSS_C_NO_CRED_STORE, keytab); ret = get_system_keytab(context, GSS_C_NO_CRED_STORE, keytab);
}
return ret; return ret;
} }