[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

[tor-commits] [tor/master] Fix a memory leak in an error case of SAFECOOKIE authentication.

To: tor-commits@xxxxxxxxxxxxxxxxxxxx
Subject: [tor-commits] [tor/master] Fix a memory leak in an error case of SAFECOOKIE authentication.
From: nickm@xxxxxxxxxxxxxx
Date: Fri, 30 Mar 2012 14:38:35 +0000 (UTC)
Delivered-to: archiver@xxxxxxxx
Delivery-date: Fri, 30 Mar 2012 10:38:53 -0400
List-archive: <http://lists.torproject.org/pipermail/tor-commits>
List-help: <mailto:tor-commits-request@lists.torproject.org?subject=help>
List-id: code repository commits <tor-commits.lists.torproject.org>
List-post: <mailto:tor-commits@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-commits>, <mailto:tor-commits-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-commits>, <mailto:tor-commits-request@lists.torproject.org?subject=unsubscribe>
Patch-author: Nick Mathewson <nickm@xxxxxxxxxxxxxx>
Sender: tor-commits-bounces@xxxxxxxxxxxxxxxxxxxx

commit affbcded5ca03d8e3ccc5debd3c23240e492c62a
Author: Nick Mathewson <nickm@xxxxxxxxxxxxxx>
Date:   Fri Mar 30 10:20:48 2012 -0400

    Fix a memory leak in an error case of SAFECOOKIE authentication.
    
    Found by Coverity Scan; fix for CID 507; bugfix on 0.2.3.13-alpha.
---
 changes/memleak_safecookie |    4 ++++
 src/or/control.c           |    1 +
 2 files changed, 5 insertions(+), 0 deletions(-)

diff --git a/changes/memleak_safecookie b/changes/memleak_safecookie
new file mode 100644
index 0000000..9773af5
--- /dev/null
+++ b/changes/memleak_safecookie
@@ -0,0 +1,4 @@
+  o Minor bugfixes:
+    - Fix a small memory leak when trying to decode incorrect base16
+      authenticator during SAFECOOKIE authentication. Found by
+      Coverity Scan. Fixes CID 507. Bugfix on 0.2.3.13-alpha.
diff --git a/src/or/control.c b/src/or/control.c
index 1eb6b80..397bb53 100644
--- a/src/or/control.c
+++ b/src/or/control.c
@@ -3020,6 +3020,7 @@ handle_control_authchallenge(control_connection_t *conn, uint32_t len,
       connection_write_str_to_buf("513 Invalid base16 client nonce",
                                   conn);
       connection_mark_for_close(TO_CONN(conn));
+      tor_free(client_nonce);
       return -1;
     }
 



_______________________________________________
tor-commits mailing list
tor-commits@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-commits

Prev by Author: [tor-commits] [tor/master] Remove a couple redundant NULL-checks before crypto_cipher_free
Next by Author: [tor-commits] [tor/master] Have tor_parse_*long functions check for negative bases
Previous by thread: [tor-commits] [tor/master] Remove a couple redundant NULL-checks before crypto_cipher_free
Next by thread: [tor-commits] [tor/master] Have tor_parse_*long functions check for negative bases
Index(es):
- Author
- Thread