subject:"\[openssl.org #1697\] openssl 2.2.8g\: failure to check the return value of sk_new_null\(\) in \/apps\/pkcs12.c, ocsp.c, engine.c and cr12p7.c"

[openssl.org #1697] openssl 2.2.8g: failure to check the return value of sk_new_null() in /apps/pkcs12.c, ocsp.c, engine.c and cr12p7.c

2014-08-13 Thread Rich Salz via RT

There are now type-safe, so its sk_X_new_null calls. And all of them in apps/*.c are now checked. This will be part of a post-1.0.2 release. -- Rich Salz, OpenSSL dev team; rs...@openssl.org __ OpenSSL Project

[openssl.org #1697] openssl 2.2.8g: failure to check the return value of sk_new_null() in /apps/pkcs12.c, ocsp.c, engine.c and cr12p7.c

2008-06-04 Thread Ray-Yaung Chang via RT

File Name: /crypto/stack/stack.c Function Name: sk_new_null() Code: 115: STACK *sk_new_null(void) 117: return sk_new((int (*)(const char * const *, const char * const *))0); File Name: /apps/crl2p7.c Function Name: main() Buggy Code: 144: if (!certflst) certflst = sk_new_null();