avoid xmalloc(0) for PKCS#11 keyid for ECDSA keys (we already did this

author djm <djm@openbsd.org>

Thu, 18 Nov 2021 21:11:01 +0000 (21:11 +0000)

committer djm <djm@openbsd.org>

Thu, 18 Nov 2021 21:11:01 +0000 (21:11 +0000)
author djm <djm@openbsd.org>
Thu, 18 Nov 2021 21:11:01 +0000 (21:11 +0000)
committer djm <djm@openbsd.org>
Thu, 18 Nov 2021 21:11:01 +0000 (21:11 +0000)
diff --git a/usr.bin/ssh/ssh-pkcs11.c b/usr.bin/ssh/ssh-pkcs11.c

index 7a91281..707725c 100644 (file)
--- a/usr.bin/ssh/ssh-pkcs11.c
+++ b/usr.bin/ssh/ssh-pkcs11.c
@@ -1,4 +1,4 @@
-/* $OpenBSD: ssh-pkcs11.c,v 1.54 2021/08/11 05:20:17 djm Exp $ */
+/* $OpenBSD: ssh-pkcs11.c,v 1.55 2021/11/18 21:11:01 djm Exp $ */
  /*
   * Copyright (c) 2010 Markus Friedl.  All rights reserved.
   * Copyright (c) 2014 Pedro Martelletto. All rights reserved.
@@ -601,9 +601,10 @@ pkcs11_ecdsa_wrap(struct pkcs11_provider *provider, CK_ULONG slotidx,
         k11->slotidx = slotidx;
         /* identify key object on smartcard */
         k11->keyid_len = keyid_attrib->ulValueLen;
-       k11->keyid = xmalloc(k11->keyid_len);
-       memcpy(k11->keyid, keyid_attrib->pValue, k11->keyid_len);
-
+       if (k11->keyid_len > 0) {
+               k11->keyid = xmalloc(k11->keyid_len);
+               memcpy(k11->keyid, keyid_attrib->pValue, k11->keyid_len);
+       }
         EC_KEY_set_method(ec, ec_key_method);
         EC_KEY_set_ex_data(ec, ec_key_idx, k11);
author	djm <djm@openbsd.org>
	Thu, 18 Nov 2021 21:11:01 +0000 (21:11 +0000)
committer	djm <djm@openbsd.org>
	Thu, 18 Nov 2021 21:11:01 +0000 (21:11 +0000)