summaryrefslogtreecommitdiff
path: root/src/lib/libc/string/timingsafe_bcmp.c
diff options
context:
space:
mode:
authortb <>2022-01-24 13:49:50 +0000
committertb <>2022-01-24 13:49:50 +0000
commit9210bb33be202e5d504f07e28f4c2166cb8388f4 (patch)
treec3b4b67dcc7a47346bcf780fdc92a1429e2e9c10 /src/lib/libc/string/timingsafe_bcmp.c
parent1de5f61defd3d7adbd82fc31ea2c09b4b1929b0d (diff)
downloadopenbsd-9210bb33be202e5d504f07e28f4c2166cb8388f4.tar.gz
openbsd-9210bb33be202e5d504f07e28f4c2166cb8388f4.tar.bz2
openbsd-9210bb33be202e5d504f07e28f4c2166cb8388f4.zip
Avoid use of uninitialized in tlsext_sni_server_parse()
If the hostname is too long, tlsext_sni_is_valid_hostname() will fail without having initialized *is_ip. As a result, the garbage value could lead to accepting (but otherwise ignoring) overlong and possibly invalid hostnames without erroring in tlsext_sni_server_parse(). ok inoguchi jsing
Diffstat (limited to 'src/lib/libc/string/timingsafe_bcmp.c')
0 files changed, 0 insertions, 0 deletions