On Fri, Oct 22, 2010 at 5:01 PM, Andy Polyakov wrote:
>> I helped Wei Dai wrestle with a similar problem for Crypto++. We wrote
>> a couple audit tools, one of which is attached. I just completed an
>> audit on my /usr/lib. The following OpenSSL modules crashed during a
>> simple load/unload cycle
> I helped Wei Dai wrestle with a similar problem for Crypto++. We wrote
> a couple audit tools, one of which is attached. I just completed an
> audit on my /usr/lib. The following OpenSSL modules crashed during a
> simple load/unload cycle:
>
> /usr/lib/debug/lib/libcrypto.so.0.9.8
> /usr/lib/deb
On Fri, Oct 22, 2010 at 10:40:01AM +0200, Andy Polyakov wrote:
>
> You've got to appreciate the irony. Even though "systems" are referred
> to as "some," we can as well stop pretending that we are not talking
> about Win64. And on Win64 off_t is ... 32 bits. But even in real POSIX
> environment of
If a library containing a function which calls DH_new() followed by a
DH_free() is dlopen()ed, the function called and then dlclosed() memory
is leaked. The bug was found on Solaris and the following report uses
some Solaris specific tools (for memory leak searching, for example).
The followin
That's right. Not only the actual implementation but more the API do not
support 64bit values being passed around.
jeff
> Hi Andy,
>
> The specific concern is that (e.g.) the BIO seek and tell operations use
> long for parameters, which on some 64-bit systems is still 32 bits.
>
> They need to
Attached is a patch for a minor typo in ssl.pod.
--
Jim
diff -ur openssl-1.0.0a.old/doc/ssl/ssl.pod openssl-1.0.0a/doc/ssl/ssl.pod
--- openssl-1.0.0a.old/doc/ssl/ssl.pod 2006-03-10 15:06:17.0 -0800
+++ openssl-1.0.0a/doc/ssl/ssl.pod 2010-10-21 12:00:13.271447000 -0700
@@ -158,7 +158,7 @@
>> The specific concern is that (e.g.) the BIO seek and tell
>> operations use long for parameters, which on some 64-bit systems is
>> still 32 bits.
>>
>> They need to use size_t or a specific 64-bit type.
>
> No. size_t is wrong; it may be 32 bits on platforms where file offsets
> can be 64 bit