artulab
projects / openbsd / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 6d1abca) | patch
Avoid use of uninitialized in tlsext_sni_server_parse()
authortb <tb@openbsd.org>
Mon, 24 Jan 2022 13:49:50 +0000 (13:49 +0000)
committertb <tb@openbsd.org>
Mon, 24 Jan 2022 13:49:50 +0000 (13:49 +0000)
commit5a023ad08058cf52e3ee35a6f3f10801cb6d407b
tree228ef5ad546a6bcde91dbed6c3a8b9dc27628bf3tree | snapshot
parent6d1abca25541504c8c34a1aa238e4c63fac8405ccommit | diff
Avoid use of uninitialized in tlsext_sni_server_parse()

If the hostname is too long, tlsext_sni_is_valid_hostname() will fail
without having initialized *is_ip. As a result, the garbage value could
lead to accepting (but otherwise ignoring) overlong and possibly invalid
hostnames without erroring in tlsext_sni_server_parse().

ok inoguchi jsing
lib/libssl/ssl_tlsext.c diff | blob | history
OpenBSD src
by Ahmet Artu Yildirim