CVSROOT: /cvs
Module name: src
Changes by: js...@cvs.openbsd.org 2022/03/17 11:17:58
Modified files:
lib/libcrypto/asn1: a_string.c
Log message:
Rework ASN1_STRING_set()
Rework ASN1_STRING_set() so that we always clear and free an existing
allocation, prior to storing the new data. This fixes a number of issues,
including a failure to zero data if the existing allocation was too small.
This also fixes other bugs such as leaving the allocation uninitialised
if NULL is passed for data. Require -1 where strlen() is expected and
improve length and overflow checks.
ok inoguchi@ tb@
