Ticket #165: jabberd2_sasl_cyrus_dont_write_uninitialized_memory.2.diff

sx/sasl_cyrus.c

@@ -305 +305 @@
       len = rlen;
       if (sd->stream->req_to)
           len+=strlen(sd->stream->req_to) + 2;
-      buf = malloc(len);
+      buf = malloc(len + 1);
       strncpy(buf, requested_user, rlen);
       buf[rlen] = '\0';
       c = strrchr(buf, '@');
@@ -442 +442 @@
       len = strlen(buf);
       if (s->req_to)
           len+=strlen(s->req_to) + 2;
-        authzid = malloc(len);
+        authzid = malloc(len + 1);
         strcpy(authzid, buf);
 
         sasl_getprop(sasl, SASL_DEFUSERREALM, (const void **) &buf);