[gnutls-devel] GnuTLS | libgnutls: Add system-wide default-priority-string override. (!1158)

Development of GNU's TLS library gnutls-devel at lists.gnutls.org
Fri Jan 10 09:21:02 CET 2020




Nikos Mavrogiannopoulos started a new discussion on lib/priority.c: https://gitlab.com/gnutls/gnutls/merge_requests/1158#note_269589264

>  		if (ret < 0)
>  			return 0;
>  	} else if (c_strcasecmp(section, OVERRIDES_SECTION)==0) {
> -		if (c_strcasecmp(name, "insecure-hash")==0) {
> -			p = clear_spaces(value, str);
> +		if (c_strcasecmp(name, "default-priority-string")==0) {
> +			_clear_default_system_priority();
> +			p = clear_spaces(value, str, UINT_MAX);

str has maximum size less than UINT_MAX. This can lead into an overflow as I understand it.

-- 
Reply to this email directly or view it on GitLab: https://gitlab.com/gnutls/gnutls/merge_requests/1158#note_269589264
You're receiving this email because of your account on gitlab.com.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.gnupg.org/pipermail/gnutls-devel/attachments/20200110/e2600730/attachment.html>


More information about the Gnutls-devel mailing list