bugfix: Allocate after sanitizing inputs

2023-09-21 08:12:18 -05:00
parent df9e70a6d7
commit b324e2b31b
1 changed files with 1 additions and 1 deletions
--- a/transaction.c
+++ b/transaction.c
@@ -11,10 +11,10 @@

 int cb_pam_conv(int num_msg, PAM_CONST struct pam_message **msg, struct pam_response **resp, void *appdata_ptr)
 {
-	*resp = calloc(num_msg, sizeof **resp);
 	if (num_msg <= 0 || num_msg > PAM_MAX_NUM_MSG)
 		return PAM_CONV_ERR;

+	*resp = calloc(num_msg, sizeof **resp);
 	if (!*resp)
 		return PAM_BUF_ERR;