Avoid a 1 byte overcopy in x509_get_subject (ssl_verify_openssl.c)

Trac: #890

Signed-off-by: Guido Vranken <guidovranken@gmail.com>
Acked-by: Steffan Karger <steffan.karger@fox-it.com>
Message-Id: <CAO5O-EKGgpYAsJC5j+osB_LAteoUDbOwVYVqkB2=cA3a6VVHoA@mail.gmail.com>
URL: https://www.mail-archive.com/openvpn-devel@lists.sourceforge.net/msg14649.html
Signed-off-by: Gert Doering <gert@greenie.muc.de>
This commit is contained in:
Guido Vranken 2017-05-13 12:37:50 +02:00 committed by Gert Doering
parent c18802e2e2
commit 04c84548c2

View file

@ -285,11 +285,11 @@ x509_get_subject (X509 *cert, struct gc_arena *gc)
BIO_get_mem_ptr (subject_bio, &subject_mem);
maxlen = subject_mem->length + 1;
subject = gc_malloc (maxlen, false, gc);
maxlen = subject_mem->length;
subject = gc_malloc (maxlen+1, false, gc);
memcpy (subject, subject_mem->data, maxlen);
subject[maxlen - 1] = '\0';
subject[maxlen] = '\0';
err:
if (subject_bio)