From 8aa2bac99bb2790a6f0e023ed932d43c5f4b3448 Mon Sep 17 00:00:00 2001
From: dtucker <dtucker@openbsd.org>
Date: Tue, 26 Apr 2022 07:41:44 +0000
Subject: [PATCH] Check sshauthopt_new() for NULL.  bz#3425, from tessgauthier
 at microsoft.com.  ok djm@

---
 usr.bin/ssh/auth.c | 5 +++--
 1 file changed, 3 insertions(+), 2 deletions(-)

diff --git a/usr.bin/ssh/auth.c b/usr.bin/ssh/auth.c
index 883e4e6adb3..3f2654ebeb0 100644
--- a/usr.bin/ssh/auth.c
+++ b/usr.bin/ssh/auth.c
@@ -1,4 +1,4 @@
-/* $OpenBSD: auth.c,v 1.154 2022/02/23 11:17:10 djm Exp $ */
+/* $OpenBSD: auth.c,v 1.155 2022/04/26 07:41:44 dtucker Exp $ */
 /*
  * Copyright (c) 2000 Markus Friedl.  All rights reserved.
  *
@@ -824,7 +824,8 @@ auth_restrict_session(struct ssh *ssh)
 	debug_f("restricting session");
 
 	/* A blank sshauthopt defaults to permitting nothing */
-	restricted = sshauthopt_new();
+	if ((restricted = sshauthopt_new()) == NULL)
+		fatal_f("sshauthopt_new failed");
 	restricted->permit_pty_flag = 1;
 	restricted->restricted = 1;
 
-- 
2.20.1