This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(51.2, 63%, 14%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EXP%3C/text%3E%3C/svg%3E)
Hi, I'm using CryptProtectData() and CryptUnprotectData() APIs for data encryption and decryption in our App. Reading API document here: https://learn.microsoft.com/en-us/windows/win32/api/dpapi/nf-dpapi-cryptprotectdata, it's not clear why LocalFree() needs to be called against the output buffer after usage, the example code on that page does not invoke LocalFree().
What's also missing on the document (The main reason for this question) is that, how DATA_BLOB::pbData for the output is managed by DPAPI? Can I provide my own memory? If I can, how do I know the output buffer size of the encrypted data?
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(211.20000000000002, 92%, 30%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ERL%3C/text%3E%3C/svg%3E)
I noticed that the APIs you are using are win32 APIs. Are you developing a UWP app or a win32 app?
Hi Roy, it's actually a win32 console app I'm using for SDK development and testing (we are developing a SDK for other developers within the org to use).
@Xiang, Ping OK, I'll change your tag to win-api-general so that other engineers could check that.
Its unfortunate that sometimes the sample code contains errors. Call LocalFree on the pointer to the memory allocated for the encrypted data encapsulated by the DATA_BLOB struct. If that's not correct more likely than not you would see a heap corruption error result.
The sample code in nf-dpapi-cryptunprotectdata also fails to call LocalFree. Additionally the call to printf for the description string is incorrect also since the format specifier for a unicode string should be %ls
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(179.20000000000002, 34%, 27%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EXY%3C/text%3E%3C/svg%3E)
The Complete Example C Program: Using CryptProtectData does LocalFree pDataOut.pbData.
NO, you cannot provide your own memory.
Thanks to confirm. I'll applied LocalFree() to reclaim the resource from the output buffer.
I was hoping the memory leak can be captured using the technique described here https://learn.microsoft.com/en-us/visualstudio/debugger/finding-memory-leaks-using-the-crt-library?view=vs-2019, but it does not show up in the leak report. Although I an capture leaks of memory allocated using malloc().
This is probably another topic, if you can point me to the right direction how the memory leak left by DPAPI can be detected, that'll be great. If not, that's fine.
The CRT library only detects and reports memory leaks for allocations made by library functions (e.g., malloc, new, etc). It does not track other allocators available in the Windows API such as HeapAlloc, GlobalAlloc, LocalAlloc, or CoTaskMemAlloc. Both GlobalAlloc and LocalAlloc are wrappers around HeapAlloc. Refer to example-10---detecting-a-heap-memory-leak-in-a-process for an example of a tool to detect memory leaks in the process heap. CoTaskMemAlloc is the COM Task Allocator and related memory leaks can be identified by the use of the IMallocSpy interface.