Fix locking in nm_creds_t.create_shared_enumerator.

author Tobias Brunner <tobias@strongswan.org>

Mon, 3 Oct 2011 17:32:14 +0000 (19:32 +0200)

committer Tobias Brunner <tobias@strongswan.org>

Mon, 3 Oct 2011 17:32:14 +0000 (19:32 +0200)
author Tobias Brunner <tobias@strongswan.org>
Mon, 3 Oct 2011 17:32:14 +0000 (19:32 +0200)
committer Tobias Brunner <tobias@strongswan.org>
Mon, 3 Oct 2011 17:32:14 +0000 (19:32 +0200)
diff --git a/src/libcharon/plugins/nm/nm_creds.c b/src/libcharon/plugins/nm/nm_creds.c

index 0d315102018dc0ce662b9640560a8175abd6ab98..f8fae950487207b8c6c7a52ea490c1ff53373fcb 100644 (file)
--- a/src/libcharon/plugins/nm/nm_creds.c
+++ b/src/libcharon/plugins/nm/nm_creds.c
@@ -270,24 +270,26 @@ METHOD(credential_set_t, create_shared_enumerator, enumerator_t*,
         shared_enumerator_t *enumerator;
         chunk_t key;
  
+       this->lock->read_lock(this->lock);
+
         switch (type)
         {
                 case SHARED_EAP:
                 case SHARED_IKE:
                         if (!this->pass || !this->user)
                         {
-                               return NULL;
+                               goto no_secret;
                         }
                         if (me && !me->equals(me, this->user))
                         {
-                               return NULL;
+                               goto no_secret;
                         }
                         key = chunk_create(this->pass, strlen(this->pass));
                         break;
                 case SHARED_PRIVATE_KEY_PASS:
                         if (!this->keypass)
                         {
-                               return NULL;
+                               goto no_secret;
                         }
                         key = chunk_create(this->keypass, strlen(this->keypass));
                         break;
@@ -295,12 +297,12 @@ METHOD(credential_set_t, create_shared_enumerator, enumerator_t*,
                         if (!this->keypass || !me ||
                                 !chunk_equals(me->get_encoding(me), this->keyid))
                         {
-                               return NULL;
+                               goto no_secret;
                         }
                         key = chunk_create(this->keypass, strlen(this->keypass));
                         break;
                 default:
-                       return NULL;
+                       goto no_secret;
         }
  
         INIT(enumerator,
@@ -310,9 +312,12 @@ METHOD(credential_set_t, create_shared_enumerator, enumerator_t*,
                 },
                 .this = this,
         );
-       this->lock->read_lock(this->lock);
         enumerator->key = shared_key_create(type, chunk_clone(key));
         return &enumerator->public;
+
+no_secret:
+       this->lock->unlock(this->lock);
+       return NULL;
  }
  
  METHOD(nm_creds_t, add_certificate, void,
author	Tobias Brunner <tobias@strongswan.org>
	Mon, 3 Oct 2011 17:32:14 +0000 (19:32 +0200)
committer	Tobias Brunner <tobias@strongswan.org>
	Mon, 3 Oct 2011 17:32:14 +0000 (19:32 +0200)