Free struct sudo_user in sudoers_policy_close() and sudoers_cleanup().

Also, do not NULL out the close function if NO_LEAKS is defined.
2025-08-31 14:25:15 +00:00 · 2021-02-15 08:29:47 -07:00
parent ea7a70e85d
commit 52e3fcc795
4 changed files with 66 additions and 66 deletions
--- a/plugins/sudoers/sudoers.c
+++ b/plugins/sudoers/sudoers.c
@@ -1614,6 +1614,7 @@ sudoers_cleanup(void)
    }
    if (def_group_plugin)
 	group_plugin_unload();
+    sudo_user_free();
    sudo_freepwcache();
    sudo_freegrcache();

@@ -1633,3 +1634,54 @@ tty_present(void)
    }
    debug_return_bool(true);
 }
+
+/*
+ * Free memory allocated for struct sudo_user.
+ */
+void
+sudo_user_free(void)
+{
+    debug_decl(sudo_user_free, SUDOERS_DEBUG_PLUGIN);
+
+    /* Free remaining references to password and group entries. */
+    if (sudo_user.pw != NULL)
+	sudo_pw_delref(sudo_user.pw);
+    if (runas_pw != NULL)
+	sudo_pw_delref(runas_pw);
+    if (runas_gr != NULL)
+	sudo_gr_delref(runas_gr);
+    if (user_gid_list != NULL)
+	sudo_gidlist_delref(user_gid_list);
+
+    /* Free dynamic contents of sudo_user. */
+    free(user_cwd);
+    free(user_name);
+    free(user_gids);
+    if (user_ttypath != NULL)
+	free(user_ttypath);
+    else
+	free(user_tty);
+    if (user_shost != user_host)
+	    free(user_shost);
+    free(user_host);
+    if (user_srunhost != user_runhost)
+	    free(user_srunhost);
+    free(user_runhost);
+    free(user_cmnd);
+    free(user_args);
+    free(safe_cmnd);
+    free(user_stat);
+#ifdef HAVE_SELINUX
+    free(user_role);
+    free(user_type);
+#endif
+#ifdef HAVE_PRIV_SET
+    free(user_privs);
+    free(user_limitprivs);
+#endif
+    free(sudo_user.iolog_file);
+    free(sudo_user.iolog_path);
+    memset(&sudo_user, 0, sizeof(sudo_user));
+
+    debug_return;
+}