__
OpenSSL Project http://www.openssl.org
Development Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
__
OpenSSL Project http://www.openssl.org
Development Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
This issue has been fixed and committed. The check for NULL that you
propose was added to the free_index function itself so that all callers of
free_index benefit from the protection.
Regards,
Steven
-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]
On Behalf Of
[EMAIL PROTECTED] - Wed Apr 21 08:27:23 2004]:
This bug is already fixed by having free_index() check for NULL.
Thank you. I'm resolving this ticket.
--
Richard Levitte
[EMAIL PROTECTED]
__
OpenSSL Project
[EMAIL PROTECTED] - Wed Apr 21 08:27:34 2004]:
Interesting bug. I guess that noone ever thought of testing for
ridiculously small moduli... A quick solution would be to have the
following at the beginning of BN_generate_prime_ex():
/* We know from experience that this algorithms
I've found that in stack.c there is no check about
index value.
Results a crash if index=MIN_NODES
index=st-num or unpredictable result if indexMIN_NODES
index=st-num
char *sk_value(const STACK *st, int
i){if(st == NULL) return NULL;return
st-data[i];}
char *sk_set(STACK *st, int i,
Are there any downstream problems using a cert based
off of a ssh-keygen as opposed to an openssl genrsa?
For example:
ssh-keygen -trsa -b1024 -ftestid_rsa -N
openssl req -new -key testid_rsa -out
testid_rsa.csr
The above is what I'm currently using based off
OpenSSH's supported
On April 21, 2004 04:49 am, Richard Levitte via RT wrote:
I'm a little hesitant to do this, however, as it has a strong smell of
quick and dirty hack (which is about the same smell as I imagine a pair
of socks you have worn for a week would while wearing sneackers 80% of
the time...).
On April 21, 2004 08:26 am, Richard Koenning wrote:
[EMAIL PROTECTED] wrote:
I've found that in stack.c there is no check about index value.
Results a crash if index=MIN_NODES index=st-num or
unpredictable result if indexMIN_NODES index=st-num
See the message with the subject Re:
In message [EMAIL PROTECTED] on Wed, 21 Apr 2004 10:37:45 -0400, Geoff Thorpe
[EMAIL PROTECTED] said:
geoff On April 21, 2004 04:49 am, Richard Levitte via RT wrote:
geoff I'm a little hesitant to do this, however, as it has a strong
geoff smell of quick and dirty hack (which is about the same
On Wed, Apr 21, 2004, Richard Levitte - VMS Whacker wrote:
In message [EMAIL PROTECTED] on Wed, 21 Apr 2004 10:37:45 -0400, Geoff Thorpe
[EMAIL PROTECTED] said:
geoff We should find where/why things spin out of control and improve
geoff the handling to either work or bail out gracefully. I
On April 21, 2004 04:49 am, Richard Levitte via RT wrote:
[EMAIL PROTECTED] - Wed Apr 21 08:27:34 2004]:
Interesting bug. I guess that noone ever thought of testing for
ridiculously small moduli... A quick solution would be to have the
following at the beginning of BN_generate_prime_ex():
12 matches
Mail list logo
