From 9fb29f814e1ac0f2d213568a14a529428cf32c1c Mon Sep 17 00:00:00 2001
From: Sebastien Buisson <sbuisson@ddn.com>
Date: Tue, 11 Mar 2025 17:06:19 +0100
Subject: [PATCH] LU-18793 gss: coverity issue in prepare_krb5_rfc4121_buffer

Fix issue found by Coverity in prepare_krb5_rfc4121_buffer():

CoverityID 457079:    (RESOURCE_LEAK)
   Variable "derived_key" going out of scope leaks the storage
   "derived_key.data" points to.

Fixes: c7cf297687 ("LU-18256 gss: deprecate insecure enctypes")
Signed-off-by: Sebastien Buisson <sbuisson@ddn.com>
Change-Id: I1a2924555814ca6ce643b9e7cad217a7f6725765
Reviewed-on: https://review.whamcloud.com/c/fs/lustre-release/+/58371
Tested-by: jenkins <devops@whamcloud.com>
Tested-by: Maloo <maloo@whamcloud.com>
Reviewed-by: Andreas Dilger <adilger@whamcloud.com>
Reviewed-by: Aurelien Degremont <adegremont@nvidia.com>
Reviewed-by: Oleg Drokin <green@whamcloud.com>
---
 lustre/utils/gss/context_lucid.c | 13 ++++++++-----
 1 file changed, 8 insertions(+), 5 deletions(-)

diff --git a/lustre/utils/gss/context_lucid.c b/lustre/utils/gss/context_lucid.c
index e87db9b..c666024 100644
--- a/lustre/utils/gss/context_lucid.c
+++ b/lustre/utils/gss/context_lucid.c
@@ -405,14 +405,13 @@ prepare_krb5_rfc4121_buffer(gss_krb5_lucid_context_v1_t *lctx,
 	static int constant_two = 2;
 	char *p, *end;
 	uint32_t v2_flags = 0;
-	gss_krb5_lucid_key_t enc_key;
 	gss_krb5_lucid_key_t derived_key;
 	gss_buffer_desc fakeoid;
 	uint32_t enctype;
 	uint32_t keysize;
 	uint32_t numkeys;
 
-	memset(&enc_key, 0, sizeof(enc_key));
+	memset(&derived_key, 0, sizeof(derived_key));
 	memset(&fakeoid, 0, sizeof(fakeoid));
 
 	if (!(buf->value = calloc(1, MAX_CTX_LEN)))
@@ -476,6 +475,7 @@ prepare_krb5_rfc4121_buffer(gss_krb5_lucid_context_v1_t *lctx,
 		if (write_bytes(&p, end, derived_key.data, derived_key.length))
 			goto out_err;
 		free(derived_key.data);
+		derived_key.data = NULL;
 	} else {
 		gss_krb5_lucid_key_t *keyptr;
 		uint32_t sign_usage, seal_usage;
@@ -508,6 +508,7 @@ prepare_krb5_rfc4121_buffer(gss_krb5_lucid_context_v1_t *lctx,
 				derived_key.length))
 			goto out_err;
 		free(derived_key.data);
+		derived_key.data = NULL;
 
 		/* Ki */
 		if (derive_key_lucid(keyptr, &derived_key,
@@ -517,6 +518,7 @@ prepare_krb5_rfc4121_buffer(gss_krb5_lucid_context_v1_t *lctx,
 				derived_key.length))
 			goto out_err;
 		free(derived_key.data);
+		derived_key.data = NULL;
 
 		/* Kc */
 		if (derive_key_lucid(keyptr, &derived_key,
@@ -526,6 +528,7 @@ prepare_krb5_rfc4121_buffer(gss_krb5_lucid_context_v1_t *lctx,
 				derived_key.length))
 			goto out_err;
 		free(derived_key.data);
+		derived_key.data = NULL;
 	}
 
 	buf->length = p - (char *)buf->value;
@@ -539,9 +542,9 @@ out_err:
 		buf->value = NULL;
 	}
 	buf->length = 0;
-	if (enc_key.data) {
-		free(enc_key.data);
-		enc_key.data = NULL;
+	if (derived_key.data) {
+		free(derived_key.data);
+		derived_key.data = NULL;
 	}
 	return -1;
 }
-- 
1.8.3.1