Avoid leaks on gss_accept_sec_context errors

author Simo Sorce <simo@redhat.com>

Tue, 14 Aug 2012 13:14:15 +0000 (15:14 +0200)

committer Greg Hudson <ghudson@mit.edu>

Sun, 16 Sep 2012 15:08:58 +0000 (11:08 -0400)
author Simo Sorce <simo@redhat.com>
Tue, 14 Aug 2012 13:14:15 +0000 (15:14 +0200)
committer Greg Hudson <ghudson@mit.edu>
Sun, 16 Sep 2012 15:08:58 +0000 (11:08 -0400)
diff --git a/src/lib/gssapi/mechglue/g_accept_sec_context.c b/src/lib/gssapi/mechglue/g_accept_sec_context.c

index f6afc4517e7711102bc62d409133b7656018c6b0..85e41d310196c69388dc7e9258569415efc02711 100644 (file)
--- a/src/lib/gssapi/mechglue/g_accept_sec_context.c
+++ b/src/lib/gssapi/mechglue/g_accept_sec_context.c
@@ -236,12 +236,10 @@ gss_cred_id_t *           d_cred;
                             &temp_minor_status, mech,
                             internal_name, &tmp_src_name);
                     if (temp_status != GSS_S_COMPLETE) {
+                       status = temp_status;
                         *minor_status = temp_minor_status;
                         map_error(minor_status, mech);
-                       if (output_token->length)
-                           (void) gss_release_buffer(&temp_minor_status,
-                                                     output_token);
-                       return (temp_status);
+                       goto error_out;
                     }
                     *src_name = tmp_src_name;
                 } else
@@ -329,6 +327,9 @@ error_out:
         (void) gss_release_buffer(&temp_minor_status,
                                   (gss_buffer_t)tmp_src_name);
  
+    if (output_token->length)
+       (void) gss_release_buffer(&temp_minor_status, output_token);
+
      return (status);
  }
  #endif /* LEAN_CLIENT */
author	Simo Sorce <simo@redhat.com>
	Tue, 14 Aug 2012 13:14:15 +0000 (15:14 +0200)
committer	Greg Hudson <ghudson@mit.edu>
	Sun, 16 Sep 2012 15:08:58 +0000 (11:08 -0400)