> On Feb 4, 2016, at 3:37 PM, Rich Salz via RT <[email protected]> wrote: > > Rather than replacing all the getenv() calls, a simple wrapper like > OPENSSL_safe_getenv() that includes the issetguid test seems a lot cleaner. > And > the config changes needed to be ported up to master.
Where available, this should use the native safe getenv() interface, rather than just do issetugid() directly: http://man7.org/linux/man-pages/man3/getenv.3.html -- Viktor. _______________________________________________ openssl-dev mailing list To unsubscribe: https://mta.openssl.org/mailman/listinfo/openssl-dev
