convert 53 malloc(a*b) to reallocarray(NULL, a, b). that is 53

potential integer overflows easily changed into an allocation return of NULL, with errno nicely set if need be. checks for an allocations returning NULL are commonplace, or if the object is dereferenced (quite normal) will result in a nice fault which can be detected & repaired properly. ok tedu
author: deraadt <> 2014-05-29 21:07:43 +0000
committer: deraadt <> 2014-05-29 21:07:43 +0000
commit: 3d662abca6b2a7f5bc9108b036434d61fcdb6e53 (patch)
tree: d5fe0c330801f3e72c7b588264c6027636db4330 /src/lib/libcrypto/asn1/tasn_enc.c
parent: d205a2aecb99564cccfbea61c39ebe3b0ddd7fb7 (diff)
download: openbsd-3d662abca6b2a7f5bc9108b036434d61fcdb6e53.tar.gz
openbsd-3d662abca6b2a7f5bc9108b036434d61fcdb6e53.tar.bz2
openbsd-3d662abca6b2a7f5bc9108b036434d61fcdb6e53.zip
1 files changed, 1 insertions, 1 deletions
diff --git a/src/lib/libcrypto/asn1/tasn_enc.c b/src/lib/libcrypto/asn1/tasn_enc.c
index f5fc8820f6..cfceabe5a9 100644
--- a/src/lib/libcrypto/asn1/tasn_enc.c
+++ b/src/lib/libcrypto/asn1/tasn_enc.c
@@ -435,7 +435,7 @@ asn1_set_seq_out(STACK_OF(ASN1_VALUE) *sk, unsigned char **out, int skcontlen,
                if (sk_ASN1_VALUE_num(sk) < 2)
                        do_sort = 0;
                else {
-                        derlst = malloc(sk_ASN1_VALUE_num(sk) *
+                        derlst = reallocarray(NULL, sk_ASN1_VALUE_num(sk),
                            sizeof(*derlst));
                        tmpdat = malloc(skcontlen);
                        if (!derlst || !tmpdat) {
author	deraadt <>	2014-05-29 21:07:43 +0000
committer	deraadt <>	2014-05-29 21:07:43 +0000
commit	3d662abca6b2a7f5bc9108b036434d61fcdb6e53 (patch)
tree	d5fe0c330801f3e72c7b588264c6027636db4330 /src/lib/libcrypto/asn1/tasn_enc.c
parent	d205a2aecb99564cccfbea61c39ebe3b0ddd7fb7 (diff)
download	openbsd-3d662abca6b2a7f5bc9108b036434d61fcdb6e53.tar.gz openbsd-3d662abca6b2a7f5bc9108b036434d61fcdb6e53.tar.bz2 openbsd-3d662abca6b2a7f5bc9108b036434d61fcdb6e53.zip

diff --git a/src/lib/libcrypto/asn1/tasn_enc.c b/src/lib/libcrypto/asn1/tasn_enc.c index f5fc8820f6..cfceabe5a9 100644 --- a/src/lib/libcrypto/asn1/tasn_enc.c +++ b/src/lib/libcrypto/asn1/tasn_enc.c
@@ -435,7 +435,7 @@ asn1_set_seq_out(STACK_OF(ASN1_VALUE) sk, unsigned char *out, int skcontlen,
435	if (sk_ASN1_VALUE_num(sk) < 2)	435	if (sk_ASN1_VALUE_num(sk) < 2)
436	do_sort = 0;	436	do_sort = 0;
437	else {	437	else {
438	derlst = malloc(sk_ASN1_VALUE_num(sk) *	438	derlst = reallocarray(NULL, sk_ASN1_VALUE_num(sk),
439	sizeof(*derlst));	439	sizeof(*derlst));
440	tmpdat = malloc(skcontlen);	440	tmpdat = malloc(skcontlen);
441	if (!derlst \|\| !tmpdat) {	441	if (!derlst \|\| !tmpdat) {