Use safer sizeof variant in malloc

For a local variable: TYPE *p; Allocations like this are "risky": p = OPENSSL_malloc(sizeof(TYPE)); if the type of p changes, and the malloc call isn't updated, you could get memory corruption. Instead do this: p = OPENSSL_malloc(sizeof(*p)); Also fixed a few memset() calls that I noticed while doing this. Reviewed-by: Richard Levitte <levitte@openssl.org>
author: Rich Salz <rsalz@akamai.com> 2015-05-02 05:10:31 +0200
committer: Rich Salz <rsalz@openssl.org> 2015-05-04 21:00:13 +0200
commit: b4faea50c35d92a67d1369355b49cc3efba78406 (patch)
tree: cfebea69d625f936c9fd7281f1fa3eaa2fa38834 /crypto/conf/conf_api.c
parent: RT2943: Check sizes if -iv and -K arguments (diff)
download: openssl-b4faea50c35d92a67d1369355b49cc3efba78406.tar.xz
openssl-b4faea50c35d92a67d1369355b49cc3efba78406.zip
1 files changed, 1 insertions, 1 deletions
diff --git a/crypto/conf/conf_api.c b/crypto/conf/conf_api.c
index 59808a301b..3badf7fc44 100644
--- a/crypto/conf/conf_api.c
+++ b/crypto/conf/conf_api.c
@@ -255,7 +255,7 @@ CONF_VALUE *_CONF_new_section(CONF *conf, const char *section)
 
     if ((sk = sk_CONF_VALUE_new_null()) == NULL)
         goto err;
-    if ((v = OPENSSL_malloc(sizeof(CONF_VALUE))) == NULL)
+    if ((v = OPENSSL_malloc(sizeof(*v))) == NULL)
         goto err;
     i = strlen(section) + 1;
     if ((v->section = OPENSSL_malloc(i)) == NULL)
author	Rich Salz <rsalz@akamai.com>	2015-05-02 05:10:31 +0200
committer	Rich Salz <rsalz@openssl.org>	2015-05-04 21:00:13 +0200
commit	b4faea50c35d92a67d1369355b49cc3efba78406 (patch)
tree	cfebea69d625f936c9fd7281f1fa3eaa2fa38834 /crypto/conf/conf_api.c
parent	RT2943: Check sizes if -iv and -K arguments (diff)
download	openssl-b4faea50c35d92a67d1369355b49cc3efba78406.tar.xz openssl-b4faea50c35d92a67d1369355b49cc3efba78406.zip