Use safer sizeof variant in malloc

For a local variable: TYPE *p; Allocations like this are "risky": p = OPENSSL_malloc(sizeof(TYPE)); if the type of p changes, and the malloc call isn't updated, you could get memory corruption. Instead do this: p = OPENSSL_malloc(sizeof(*p)); Also fixed a few memset() calls that I noticed while doing this. Reviewed-by: Richard Levitte <levitte@openssl.org>
author: Rich Salz <rsalz@akamai.com> 2015-05-01 23:10:31 -0400
committer: Rich Salz <rsalz@openssl.org> 2015-05-04 15:00:13 -0400
commit: b4faea50c35d92a67d1369355b49cc3efba78406 (patch)
tree: cfebea69d625f936c9fd7281f1fa3eaa2fa38834 /crypto/conf/conf_def.c
parent: 8920a7cd04f43b1a090d0b0a8c9e16b94c6898d4 (diff)
1 files changed, 2 insertions, 2 deletions
diff --git a/crypto/conf/conf_def.c b/crypto/conf/conf_def.c
index 0ed06e11b8..8af2ab13ab 100644
--- a/crypto/conf/conf_def.c
+++ b/crypto/conf/conf_def.c
@@ -130,7 +130,7 @@ static CONF *def_create(CONF_METHOD *meth)
 {
     CONF *ret;
 
-    ret = OPENSSL_malloc(sizeof(CONF) + sizeof(unsigned short *));
+    ret = OPENSSL_malloc(sizeof(*ret));
     if (ret)
         if (meth->init(ret) == 0) {
             OPENSSL_free(ret);
@@ -357,7 +357,7 @@ static int def_load_bio(CONF *conf, BIO *in, long *line)
             p++;
             *p = '\0';
 
-            if (!(v = OPENSSL_malloc(sizeof(CONF_VALUE)))) {
+            if (!(v = OPENSSL_malloc(sizeof(*v)))) {
                 CONFerr(CONF_F_DEF_LOAD_BIO, ERR_R_MALLOC_FAILURE);
                 goto err;
             }
author	Rich Salz <rsalz@akamai.com>	2015-05-01 23:10:31 -0400
committer	Rich Salz <rsalz@openssl.org>	2015-05-04 15:00:13 -0400
commit	b4faea50c35d92a67d1369355b49cc3efba78406 (patch)
tree	cfebea69d625f936c9fd7281f1fa3eaa2fa38834 /crypto/conf/conf_def.c
parent	8920a7cd04f43b1a090d0b0a8c9e16b94c6898d4 (diff)