CVSROOT: /cvs Module name: src Changes by: [email protected] 2016/11/25 16:24:45
Modified files:
usr.bin/ssh : authfile.c
Log message:
use sshbuf_allocate() to pre-allocate the buffer used for loading
keys. This avoids implicit realloc inside the buffer code, which
might theoretically leave fragments of the key on the heap. This
doesn't appear to happen in practice for normal sized keys, but
was observed for novelty oversize ones.
Pointed out by Jann Horn of Project Zero; ok markus@
