Oops, work out expanded buffer length before allocating it...

2011-04-23 20:24:55 +00:00 · 2011-04-23 20:24:55 +00:00 · 383bc117bb
commit 383bc117bb
parent e0d1a2f80a
1 changed files with 2 additions and 2 deletions
--- a/crypto/rand/rand_lib.c
+++ b/crypto/rand/rand_lib.c
@ -198,11 +198,11 @@ int RAND_status(void)
 static size_t drbg_get_entropy(DRBG_CTX *ctx, unsigned char **pout,
                                int entropy, size_t min_len, size_t max_len)
        {
+	/* Round up request to multiple of block size */
+	min_len = ((min_len + 19) / 20) * 20;
 	*pout = OPENSSL_malloc(min_len);
 	if (!*pout)
 		return 0;
-	/* Round up request to multiple of block size */
-	min_len = ((min_len + 19) / 20) * 20;
 	if (RAND_SSLeay()->bytes(*pout, min_len) <= 0)
 		{
 		OPENSSL_free(*pout);