commit | 54d022026aae4f53fa74cc636e4a032d9689b64d | [log] [tgz] |
---|---|---|
author | djm@openbsd.org <djm@openbsd.org> | Fri Nov 25 23:24:45 2016 +0000 |
committer | Damien Miller <djm@mindrot.org> | Tue Nov 29 16:48:02 2016 +1100 |
tree | 03417de4bf21ae2982f1dd047f444e96c780a5c5 | |
parent | a9c746088787549bb5b1ae3add7d06a1b6d93d5e [diff] |
upstream commit use sshbuf_allocate() to pre-allocate the buffer used for loading keys. This avoids implicit realloc inside the buffer code, which might theoretically leave fragments of the key on the heap. This doesn't appear to happen in practice for normal sized keys, but was observed for novelty oversize ones. Pointed out by Jann Horn of Project Zero; ok markus@ Upstream-ID: d620e1d46a29fdea56aeadeda120879eddc60ab1