An off-by-one bug found by valgrind

Insufficient memory is allocated in index-pack.c to hold the *.idx name. One more byte should be allocated to hold the terminating 0. Signed-off-by: N Pavel Roskin <proski@gnu.org> Signed-off-by: N Junio C Hamano <junkio@cox.net>

An off-by-one bug found by valgrind
Insufficient memory is allocated in index-pack.c to hold the *.idx name. One more byte should be allocated to hold the terminating 0. Signed-off-by: N Pavel Roskin <proski@gnu.org> Signed-off-by: N Junio C Hamano <junkio@cox.net>
6689f087 · Pavel Roskin · Junio C Hamano · 9470657a · 6689f087
隐藏空白更改
内联并排

Showing with 1 addition and 1 deletion

index-pack.c index-pack.c +1 -1

未找到文件。
--- a/index-pack.c
+++ b/index-pack.c
@@ -440,7 +440,7 @@ int main(int argc, char **argv)
 		if (len < 5 || strcmp(pack_name + len - 5, ".pack"))
 			die("packfile name '%s' does not end with '.pack'",
 			    pack_name);
-		index_name_buf = xmalloc(len - 1);
+		index_name_buf = xmalloc(len);
 		memcpy(index_name_buf, pack_name, len - 5);
 		strcpy(index_name_buf + len - 5, ".idx");
 		index_name = index_name_buf;