I'm pretty sure you didn't mean to multiple by the size of a char* there

since that makes no sense. output is an array of char, not an array of
char*
Pierre, please review

diff --git a/ext/standard/crypt.c b/ext/standard/crypt.c
index 181a4d4931e5fd6c1c7479de5a6c55454bd9b169..da1a3b3a67988657bcc1ec50768ca2de7f7d615a 100644 (file)
--- a/ext/standard/crypt.c
+++ b/ext/standard/crypt.c
@@ -200,7 +200,7 @@ PHP_FUNCTION(crypt)
                        int needed = (sizeof(sha512_salt_prefix) - 1
                                                + sizeof(sha512_rounds_prefix) + 9 + 1
                                                + strlen(salt) + 1 + 43 + 1);
-                       output = emalloc(needed * sizeof(char *));
+                       output = emalloc(needed);
                        salt[salt_in_len] = '\0';
 
                        crypt_res = php_sha512_crypt_r(str, salt, output, needed);
@@ -223,7 +223,7 @@ PHP_FUNCTION(crypt)
                        int needed = (sizeof(sha256_salt_prefix) - 1
                                                + sizeof(sha256_rounds_prefix) + 9 + 1
                                                + strlen(salt) + 1 + 43 + 1);
-                       output = emalloc(needed * sizeof(char *));
+                       output = emalloc(needed);
                        salt[salt_in_len] = '\0';
 
                        crypt_res = php_sha256_crypt_r(str, salt, output, needed);