From 5b37259607e476de178fc20753b1083ee89448bf Mon Sep 17 00:00:00 2001
From: Colin Walters <walters@verbum.org>
Date: Wed, 26 Jul 2023 18:05:36 -0400
Subject: [PATCH] checksum-utils: Add an assertion that `buf != NULL`

Another hardening against https://bugzilla.redhat.com/show_bug.cgi?id=2217401
---
 src/libotutil/ot-checksum-utils.c | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/src/libotutil/ot-checksum-utils.c b/src/libotutil/ot-checksum-utils.c
index 8f585c09..2fe72773 100644
--- a/src/libotutil/ot-checksum-utils.c
+++ b/src/libotutil/ot-checksum-utils.c
@@ -93,6 +93,7 @@ void
 ot_checksum_update (OtChecksum *checksum, const guint8 *buf, size_t len)
 {
   OtRealChecksum *real = (OtRealChecksum *)checksum;
+  g_assert (buf);
   g_return_if_fail (real->initialized);
   g_return_if_fail (!real->closed);
 #if defined(HAVE_OPENSSL)
@@ -108,6 +109,7 @@ static void
 ot_checksum_get_digest_internal (OtRealChecksum *real, guint8 *buf, size_t buflen)
 {
   g_return_if_fail (real->initialized);
+  g_assert (buf);
   g_assert_cmpint (buflen, ==, _OSTREE_SHA256_DIGEST_LEN);
 #if defined(HAVE_OPENSSL)
   guint digest_len = buflen;
-- 
2.30.2