From ae3d0bb8e77ce1b2a096fff7d783c781c9f7a502 Mon Sep 17 00:00:00 2001
From: Jakub Jelen <jjelen@redhat.com>
Date: Mon, 13 Sep 2021 18:26:29 +0200
Subject: [PATCH] agent: Avoid uninitialized buffer.

* agent/sexp-secret.c (fixup_when_ecc_private_key): Initialize buffer to
avoid its use on unexpected inputs.

--

GnuPG-bug-id: 5393
Co-authored-by: NIIBE Yutaka <gniibe@fsij.org>
Signed-off-by: Jakub Jelen <jjelen@redhat.com>
---
 agent/sexp-secret.c | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/agent/sexp-secret.c b/agent/sexp-secret.c
index b539659e2..ac8daa910 100644
--- a/agent/sexp-secret.c
+++ b/agent/sexp-secret.c
@@ -29,7 +29,7 @@ gpg_error_t
 fixup_when_ecc_private_key (unsigned char *buf, size_t *buflen_p)
 {
   const unsigned char *s;
-  char curve_name[256];
+  char curve_name[256] = { 0, };
   size_t n;
   size_t buflen = *buflen_p;