artulab
projects / openbsd / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: d867011) | patch
ssl_cipher_process_rulestr: return early if a cipher command is invalid
authormillert <millert@openbsd.org>
Thu, 8 Sep 2022 15:31:12 +0000 (15:31 +0000)
committermillert <millert@openbsd.org>
Thu, 8 Sep 2022 15:31:12 +0000 (15:31 +0000)
commit8319bb5059b175caceac882a2943f20ca34b43d1
treeccbb1ce87189c3d156629e1f0962dd4bfd4b0f36tree | snapshot
parentd867011907cad062adc0d30accd84d6748710bb2commit | diff
ssl_cipher_process_rulestr: return early if a cipher command is invalid
This is a safer fix for the bug where we might read outside rule_str
buffer and is how BoringSSL fixed it.  OK tb@
lib/libssl/ssl_ciph.c diff | blob | history
OpenBSD src
by Ahmet Artu Yildirim