don't crash if the API is used incorrectly

faizshukri · faizshukri · commit e183ea0495fe · 2010-12-06T13:50:51.000Z
diff --git a/ext/mysqlnd/mysqlnd.c b/ext/mysqlnd/mysqlnd.c
@@ -1994,15 +1994,19 @@ MYSQLND_METHOD(mysqlnd_conn, change_user)(MYSQLND * const conn,
 		}
 	}
 	if (ret == PASS) {
+		char * tmp = NULL;
+		/* if we get conn->user as parameter and then we first free it, then estrndup it, we will crash */
+		tmp = mnd_pestrndup(user, user_len, conn->persistent);
 		if (conn->user) {
 			mnd_pefree(conn->user, conn->persistent);
 		}
-		conn->user = mnd_pestrndup(user, user_len, conn->persistent);
+		conn->user = tmp;
 
+		tmp = mnd_pestrdup(passwd, conn->persistent);
 		if (conn->passwd) {
 			mnd_pefree(conn->passwd, conn->persistent);
 		}
-		conn->passwd = mnd_pestrdup(passwd, conn->persistent);
+		conn->passwd = tmp;
 
 		if (conn->last_message) {
 			mnd_pefree(conn->last_message, conn->persistent);

Original file line number	Diff line number	Diff line change
`@@ -1994,15 +1994,19 @@ MYSQLND_METHOD(mysqlnd_conn, change_user)(MYSQLND * const conn,`
`1994`	`1994`	`}`
`1995`	`1995`	`}`
`1996`	`1996`	`if (ret == PASS) {`
	`1997`	`+ char * tmp = NULL;`
	`1998`	`+ /* if we get conn->user as parameter and then we first free it, then estrndup it, we will crash */`
	`1999`	`+ tmp = mnd_pestrndup(user, user_len, conn->persistent);`
`1997`	`2000`	`if (conn->user) {`
`1998`	`2001`	`mnd_pefree(conn->user, conn->persistent);`
`1999`	`2002`	`}`
`2000`		`- conn->user = mnd_pestrndup(user, user_len, conn->persistent);`
	`2003`	`+ conn->user = tmp;`
`2001`	`2004`
	`2005`	`+ tmp = mnd_pestrdup(passwd, conn->persistent);`
`2002`	`2006`	`if (conn->passwd) {`
`2003`	`2007`	`mnd_pefree(conn->passwd, conn->persistent);`
`2004`	`2008`	`}`
`2005`		`- conn->passwd = mnd_pestrdup(passwd, conn->persistent);`
	`2009`	`+ conn->passwd = tmp;`
`2006`	`2010`
`2007`	`2011`	`if (conn->last_message) {`
`2008`	`2012`	`mnd_pefree(conn->last_message, conn->persistent);`