SSPI Negotiate: Fix 3 memory leaks

author Marcel Raad <raad@teamviewer.com>

Thu, 24 Jul 2014 16:55:12 +0000 (18:55 +0200)

committer Daniel Stenberg <daniel@haxx.se>

Thu, 24 Jul 2014 21:50:53 +0000 (23:50 +0200)
author Marcel Raad <raad@teamviewer.com>
Thu, 24 Jul 2014 16:55:12 +0000 (18:55 +0200)
committer Daniel Stenberg <daniel@haxx.se>
Thu, 24 Jul 2014 21:50:53 +0000 (23:50 +0200)
diff --git a/lib/http_negotiate_sspi.c b/lib/http_negotiate_sspi.c

index 84e5ebf8955f0153f711f71cffa12a9234a65a0d..3c5680c4fd1f1668523c730af4dbf7d4d9426811 100644 (file)
--- a/lib/http_negotiate_sspi.c
+++ b/lib/http_negotiate_sspi.c
@@ -136,10 +136,6 @@ int Curl_input_negotiate(struct connectdata *conn, bool proxy,
        return -1;
    }
    else {
-    input_token = malloc(neg_ctx->max_token_length);
-    if(!input_token)
-      return -1;
-
      error = Curl_base64_decode(header,
                                 (unsigned char **)&input_token,
                                 &input_token_len);
@@ -186,6 +182,7 @@ int Curl_input_negotiate(struct connectdata *conn, bool proxy,
      &lifetime);
  
    Curl_unicodefree(sname);
+  Curl_safefree(input_token);
  
    if(GSS_ERROR(neg_ctx->status))
      return -1;
@@ -226,10 +223,14 @@ CURLcode Curl_output_negotiate(struct connectdata *conn, bool proxy)
    userp = aprintf("%sAuthorization: Negotiate %s\r\n", proxy ? "Proxy-" : "",
                    encoded);
  
-  if(proxy)
+  if(proxy) {
+    Curl_safefree(conn->allocptr.proxyuserpwd);
      conn->allocptr.proxyuserpwd = userp;
-  else
+  }
+  else {
+    Curl_safefree(conn->allocptr.userpwd);
      conn->allocptr.userpwd = userp;
+  }
    free(encoded);
    return (userp == NULL) ? CURLE_OUT_OF_MEMORY : CURLE_OK;
  }
author	Marcel Raad <raad@teamviewer.com>
	Thu, 24 Jul 2014 16:55:12 +0000 (18:55 +0200)
committer	Daniel Stenberg <daniel@haxx.se>
	Thu, 24 Jul 2014 21:50:53 +0000 (23:50 +0200)