*session_ptr and *pp_quote_config may be leaked if overwrites to

[labyrinth-ssr]

incubator-teaclave-sgx-sdk/samplecode/localattestation/attestation/src/func.rs

Lines 144 to 145 in 3c903bd

	let ptr = Box::into_raw(Box::new(session_info));
	*session_ptr = ptr as * mut _ as usize;

incubator-teaclave-sgx-sdk/samplecode/dcap-pckretrieval/qpl/src/lib.rs

Lines 138 to 142 in 3c903bd

	let p_ret_ql_config = Box::into_raw(Box::new(ql_config));
	unsafe {
	*pp_quote_config = p_ret_ql_config;
	}

with Box::into_raw(), the pointee is on the heap. Multiple assignments will cause leak of the old value.

Probable fix is like:
If session_request_safe should only be called once, adding an Atomic to guarantee assigning only once.

const UNINITIALIZED: usize = 0;
const INITIALIZING: usize = 1;
const INITIALIZED: usize = 2;
static GLOBAL_INIT: AtomicUsize = AtomicUsize::new(UNINITIALIZED);
pub struct SetGlobalDefaultError {
    _no_construct: (),
}

// in `session_request_safe`
       if GLOBAL_INIT
                .compare_exchange(
                    UNINITIALIZED,
                    INITIALIZING,
                    Ordering::SeqCst,
                    Ordering::SeqCst,
                )
                .is_ok()
            {
                let ptr = Box::into_raw(Box::new(session_info));
                *session_ptr = ptr as * mut _ as usize;
            }

Otherwise add the else branch:

           else {
              drop(Box::from_raw(*session_ptr));
              let ptr = Box::into_raw(Box::new(session_info));
              *session_ptr = ptr as * mut _ as usize;
          }