keychain: Pad user name if its read out from keychain

Tests show that the username actually still needs to be padded. Otherwise, crashes can occur in subsequent usage of username, as it might contain garbage.

keychain: Pad user name if its read out from keychain
Tests show that the username actually still needs to be padded. Otherwise, crashes can occur in subsequent usage of username, as it might contain garbage.
2cbb6f31 · David Fuhrmann · eb44067d · 2cbb6f31
Commit 2cbb6f31 authored Apr 19, 2018 by David Fuhrmann
Hide whitespace changes
Inline Side-by-side

Showing with 4 additions and 1 deletion

modules/keystore/keychain.m modules/keystore/keychain.m +4 -1

No files found.
--- a/modules/keystore/keychain.m
+++ b/modules/keystore/keychain.m
@@ -399,7 +399,10 @@ static unsigned int Find(vlc_keystore *p_keystore,
                case kSecAccountItemAttr:
                    if (!p_entry->ppsz_values[KEY_USER]) {
                        msg_Dbg(p_keystore, "using account name from the keychain for login");
-                        p_entry->ppsz_values[KEY_USER] = strdup((const char *)attr->data);
+
+                        char *paddedName = calloc(1, attr->length + 1);
+                        memcpy(paddedName, attr->data, attr->length);
+                        p_entry->ppsz_values[KEY_USER] = paddedName;
                    }
                    break;
                default: