diff options
| author | Werner Koch <[email protected]> | 2005-03-10 09:52:05 +0000 |
|---|---|---|
| committer | Werner Koch <[email protected]> | 2005-03-10 09:52:05 +0000 |
| commit | 1ccebd117d9b68b477f5cfe0f8df051e6cfa2161 (patch) | |
| tree | 378ab2234ff52da59266fb468842f8f1fc42bce8 /util/secmem.c | |
| parent | * primegen.c (is_prime): Free A2. Noted by [email protected]. (diff) | |
| download | gnupg-1ccebd117d9b68b477f5cfe0f8df051e6cfa2161.tar.gz gnupg-1ccebd117d9b68b477f5cfe0f8df051e6cfa2161.zip | |
(secmem_realloc): Take control information into account
when checking whether a resize is needed.
Diffstat (limited to '')
| -rw-r--r-- | util/secmem.c | 13 |
1 files changed, 10 insertions, 3 deletions
diff --git a/util/secmem.c b/util/secmem.c index 82df884e4..de3e9d4fb 100644 --- a/util/secmem.c +++ b/util/secmem.c @@ -349,7 +349,10 @@ secmem_malloc( size_t size ) print_warn(); } - /* blocks are always a multiple of 32 */ + /* Blocks are always a multiple of 32. Note that we allocate an + extra of the size of an entire MEMBLOCK. This is required + becuase we do not only need the SIZE info but also extra space + to chain up unused memory blocks. */ size += sizeof(MEMBLOCK); size = ((size + 31) / 32) * 32; @@ -398,8 +401,12 @@ secmem_realloc( void *p, size_t newsize ) mb = (MEMBLOCK*)((char*)p - ((size_t) &((MEMBLOCK*)0)->u.aligned.c)); size = mb->size; - if( newsize < size ) - return p; /* it is easier not to shrink the memory */ + if (size < sizeof(MEMBLOCK)) + log_bug ("secure memory corrupted at block %p\n", mb); + size -= ((size_t) &((MEMBLOCK*)0)->u.aligned.c); + + if( newsize <= size ) + return p; /* It is easier not to shrink the memory. */ a = secmem_malloc( newsize ); if ( a ) { memcpy(a, p, size); |