From: K.Kosako <kosako@sofnec.co.jp>
Date: Tue, 1 Oct 2019 00:06:27 +0000 (+0900)
Subject: fix loose malloc() size
X-Git-Url: https://granicus.if.org/sourcecode?a=commitdiff_plain;h=ec1d89026904f7d4e62008253c4063aa2483bf7b;p=onig

fix loose malloc() size
---

diff --git a/harnesses/deluxe-encode-harness.c b/harnesses/deluxe-encode-harness.c
index dde0d1a..aabe916 100644
--- a/harnesses/deluxe-encode-harness.c
+++ b/harnesses/deluxe-encode-harness.c
@@ -163,15 +163,13 @@ int LLVMFuzzerTestOneInput(const uint8_t * Data, size_t Size)
   remaining_size--;
 
   // copy first PATTERN_SIZE bytes off to be the pattern
-  pattern = (unsigned char *)malloc(PATTERN_SIZE+4);
-  memset(pattern, 0, PATTERN_SIZE+4);
+  pattern = (unsigned char *)malloc(PATTERN_SIZE);
   memcpy(pattern, data, PATTERN_SIZE);
   pattern_end = pattern + PATTERN_SIZE;
   data += PATTERN_SIZE;
   remaining_size -= PATTERN_SIZE;
 
-  str = (unsigned char*)malloc(remaining_size+4);
-  memset(str, 0, remaining_size+4);
+  str = (unsigned char*)malloc(remaining_size);
   memcpy(str, data, remaining_size);
   str_end = str + remaining_size;
 
diff --git a/harnesses/syntax-harness.c b/harnesses/syntax-harness.c
index 50f154d..4ea0bc9 100644
--- a/harnesses/syntax-harness.c
+++ b/harnesses/syntax-harness.c
@@ -79,14 +79,12 @@ int LLVMFuzzerTestOneInput(const uint8_t * Data, size_t Size)
   remaining_size--;
 
   // copy first PATTERN_SIZE bytes off to be the pattern
-  unsigned char *pattern = (unsigned char *)malloc(PATTERN_SIZE+1);
-  memset(pattern, 0, PATTERN_SIZE+1);
+  unsigned char *pattern = (unsigned char *)malloc(PATTERN_SIZE);
   memcpy(pattern, data, PATTERN_SIZE);
   data += PATTERN_SIZE;
   remaining_size -= PATTERN_SIZE;
 
-  unsigned char *str = (unsigned char*)malloc(remaining_size+1);
-  memset(str, 0, remaining_size+1);
+  unsigned char *str = (unsigned char*)malloc(remaining_size);
   memcpy(str, data, remaining_size);
   
   OnigEncoding use_encs[] = { ONIG_ENCODING_ASCII };