Guard call to contract() from doall_util_fn(). - openbsd - A mirror of https://github.com/libressl/openbsd.git

diff options

author	jsing <>	2024-05-06 14:36:05 +0000
committer	jsing <>	2024-05-06 14:36:05 +0000
commit	d45b716825a1d5fe9ecacfa6604c73bbbb7271c8 (patch)
tree	a4883e721f295435bac767d62c756c1c9462baa8 /src/lib/libcrypto/x509/x509_req.c
parent	d8b68bed853f60a20b979d5840f5e7a0e25ea153 (diff)
download	openbsd-d45b716825a1d5fe9ecacfa6604c73bbbb7271c8.tar.gz openbsd-d45b716825a1d5fe9ecacfa6604c73bbbb7271c8.tar.bz2 openbsd-d45b716825a1d5fe9ecacfa6604c73bbbb7271c8.zip

Guard call to contract() from doall_util_fn().

It is not safe to unconditionally call contract() - when called repeatedly it will shrink the bucket array to zero and then attempt to access that allocation on the next call. Use the same guard that is used in lh_delete(). Issue found when investigating haproxy crashes reported by wizard-it on GitHub. ok tb@

Diffstat (limited to 'src/lib/libcrypto/x509/x509_req.c')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: