From 2f8ddc6e653b76668c155ade0f90a347857486e2 Mon Sep 17 00:00:00 2001
From: Andreas Schneider <asn@cryptomilk.org>
Date: Mon, 8 Oct 2012 22:08:14 +0200
Subject: dh: Don't use strcat for ssh_get_hexa().

This is just hardening the code.

Found by Coverity.
---
 src/dh.c | 17 ++++++++---------
 1 file changed, 8 insertions(+), 9 deletions(-)

diff --git a/src/dh.c b/src/dh.c
index 170771d7..0d46c591 100644
--- a/src/dh.c
+++ b/src/dh.c
@@ -251,23 +251,22 @@ void ssh_print_bignum(const char *which, bignum num) {
  * @see ssh_string_free_char()
  */
 char *ssh_get_hexa(const unsigned char *what, size_t len) {
-  char *hexa = NULL;
+  const char h[] = "0123456789abcdef";
+  char *hexa;
   size_t i;
+  size_t hlen = len * 3;
 
-  hexa = malloc(len * 3 + 1);
+  hexa = malloc(hlen + 1);
   if (hexa == NULL) {
     return NULL;
   }
 
-  ZERO_STRUCTP(hexa);
-
   for (i = 0; i < len; i++) {
-    char hex[4];
-    snprintf(hex, sizeof(hex), "%02x:", what[i]);
-    strcat(hexa, hex);
+      hexa[i * 3] = h[(what[i] >> 4) & 0xF];
+      hexa[i * 3 + 1] = h[what[i] & 0xF];
+      hexa[i * 3 + 2] = ':';
   }
-
-  hexa[(len * 3) - 1] = '\0';
+  hexa[hlen - 1] = '\0';
 
   return hexa;
 }
-- 
cgit v1.2.3