[jira] [Created] (ZOOKEEPER-5007) Memory Leak in zookeeper_init_ssl

Cyl (Jira) Tue, 23 Dec 2025 23:59:11 -0800

Cyl created ZOOKEEPER-5007:
------------------------------

             Summary: Memory Leak in zookeeper_init_ssl
                 Key: ZOOKEEPER-5007
                 URL: https://issues.apache.org/jira/browse/ZOOKEEPER-5007
             Project: ZooKeeper
          Issue Type: Bug
          Components: c client
    Affects Versions: 3.9.4
            Reporter: Cyl
         Attachments: ssl_leak_poc.c


The function {{zookeeper_init_ssl}} in 
{{zookeeper-client/zookeeper-client-c/src/zookeeper.c}} allocates memory for 
the certificate string using {{strdup}} but fails to free it before returning.



File: {{zookeeper-client/zookeeper-client-c/src/zookeeper.c}} Function: 
{{zookeeper_init_ssl}} (around line 1450)


{code:java}
zhandle_t *zookeeper_init_ssl(const char *host, const char *cert, watcher_fn 
watcher,
        int recv_timeout, const clientid_t *clientid, void *context, int flags)
{
    zcert_t zcert;
    zcert.certstr = strdup(cert); // <--- LEAK: Allocated here
    zcert.ca = strtok(zcert.certstr, ",");
    zcert.cert = strtok(NULL, ",");
    zcert.key = strtok(NULL, ",");
    zcert.passwd = strtok(NULL, ",");
    return zookeeper_init_internal(host, watcher, recv_timeout, clientid, 
context, flags, NULL, &zcert, NULL);
    // <--- LEAK: zcert.certstr is never freed
}

 {code}



--
This message was sent by Atlassian Jira
(v8.20.10#820010)

[jira] [Created] (ZOOKEEPER-5007) Memory Leak in zookeeper_init_ssl

Reply via email to