projects / postgresql.git / commitdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | patch | inline | side by side (parent: 7393208)
Properly close token in sspi authentication
authorMagnus Hagander
Thu, 14 Jan 2016 12:06:03 +0000 (13:06 +0100)
committerMagnus Hagander
Thu, 14 Jan 2016 12:07:35 +0000 (13:07 +0100)
We can never leak more than one token, but we shouldn't do that. We
don't bother closing it in the error paths since the process will
exit shortly anyway.

Christian Ullrich

src/backend/libpq/auth.c patch | blob | blame | history

diff --git a/src/backend/libpq/auth.c b/src/backend/libpq/auth.c
index 60d8d8848d302e6ff5c9f2cfdf6cf2439c5d343e..334b1a89547f099297616c0eb34199df1c5ddac1 100644 (file)
--- a/src/backend/libpq/auth.c
+++ b/src/backend/libpq/auth.c
@@ -1255,6 +1255,8 @@ pg_SSPI_recvauth(Port *port)
                (errmsg_internal("could not get user token: error code %lu",
                                 GetLastError())));
 
+   CloseHandle(token);
+
    if (!LookupAccountSid(NULL, tokenuser->User.Sid, accountname, &accountnamesize,
                          domainname, &domainnamesize, &accountnameuse))
        ereport(ERROR,
This is the main PostgreSQL git repository.