From c52c3495e774ba63982c82b67e937cea6df26a18 Mon Sep 17 00:00:00 2001
From: Tobias Schramm <tobleminer@gmail.com>
Date: Tue, 20 Feb 2018 12:06:44 +0100
Subject: [PATCH] autoupdater: Allocate signature using safe_malloc

Previously the signature buffer could have been a null
ptr leading to a null ptr dereference

Signed-off-by: Tobias Schramm <tobleminer@gmail.com>
---
 admin/autoupdater/src/manifest.c | 5 +++--
 1 file changed, 3 insertions(+), 2 deletions(-)

diff --git a/admin/autoupdater/src/manifest.c b/admin/autoupdater/src/manifest.c
index 0c51c24..dbad89e 100644
--- a/admin/autoupdater/src/manifest.c
+++ b/admin/autoupdater/src/manifest.c
@@ -23,9 +23,9 @@
   OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
 */
 
-
 #include "hexutil.h"
 #include "manifest.h"
+#include "util.h"
 
 #include <errno.h>
 #include <limits.h>
@@ -80,7 +80,8 @@ static bool parse_rfc3339(const char *input, time_t *date) {
 
 void parse_line(char *line, struct manifest *m, const char *branch, const char *image_name) {
 	if (m->sep_found) {
-		ecdsa_signature_t *sig = malloc(sizeof(ecdsa_signature_t));
+		ecdsa_signature_t *sig = safe_malloc(sizeof(ecdsa_signature_t), "failed to allocate memory for signature");
+
 		if (!parsehex(sig, line, sizeof(*sig))) {
 			free(sig);
 			fprintf(stderr, "autoupdater: warning: garbage in signature area: %s\n", line);