cred: Check for null values when getting key from memory

The public key field is optional and as such can take NULL. Account for that and do not call strlen() on NULL values. Also assert() for non-NULL values of username & private key.

cred: Check for null values when getting key from memory
The public key field is optional and as such can take NULL. Account for that and do not call strlen() on NULL values. Also assert() for non-NULL values of username & private key.
2629fc87 · Michał Górny · f7142b5e · 2629fc87
Commit 2629fc87 authored May 24, 2015 by Michał Górny
Hide whitespace changes
Inline Side-by-side

Showing with 4 additions and 1 deletions

src/transports/ssh.c
+4 -1

No files found.
--- a/src/transports/ssh.c
+++ b/src/transports/ssh.c
@@ -374,12 +374,15 @@ static int _git_ssh_authenticate_session(
 		case GIT_CREDTYPE_SSH_MEMORY: {
 			git_cred_ssh_key *c = (git_cred_ssh_key *)cred;

+			assert(c->username);
+			assert(c->privatekey);
+
 			rc = libssh2_userauth_publickey_frommemory(
 				session,
 				c->username,
 				strlen(c->username),
 				c->publickey,
-				strlen(c->publickey),
+				c->publickey ? strlen(c->publickey) : 0,
 				c->privatekey,
 				strlen(c->privatekey),
 				c->passphrase);