Skip to content

updated all certs#3

Merged
toddouska merged 1 commit intowolfSSL:masterfrom
kaleb-himes:master
Feb 5, 2015
Merged

updated all certs#3
toddouska merged 1 commit intowolfSSL:masterfrom
kaleb-himes:master

Conversation

@kaleb-himes
Copy link
Contributor

@kaleb-himes kaleb-himes commented Feb 5, 2015

Please review certs before 3.3.4 is released.

@toddouska toddouska merged commit c539393 into wolfSSL:master Feb 5, 2015
cconlon added a commit to cconlon/wolfssl that referenced this pull request Jun 27, 2016
@cconlon
fix possible out of bound read in PemToDer header, CU wolfSSL#3
92e501c
@dgarske dgarske mentioned this pull request Aug 3, 2017
Merged
This was referenced Nov 4, 2019
Closed
Closed
@vaintroub vaintroub mentioned this pull request Jul 25, 2021
Closed
@kaleb-himes kaleb-himes mentioned this pull request Aug 6, 2021
Merged
rizlik added a commit to rizlik/wolfssl that referenced this pull request Jan 20, 2022
@rizlik
dtls-srtp: check that length of strings matched before memcomparing
9b69f69 
otherwise if profile_str_len is > strlen(gSrtpProfiles[i].name) we end up
comparing memory past gSrtpProfiles[i].name. -fsanitize=address catches this:

```
==100159==ERROR: AddressSanitizer: global-buffer-overflow on address 0x7f40d8d533b2 at pc 0x7f40d8eb014f bp 0x7f40d50fe240 sp 0x7f40d50fd9e8
READ of size 21 at 0x7f40d8d533b2 thread T107
    #0 0x7f40d8eb014e in MemcmpInterceptorCommon(void*, int (*)(void const*, void const*, unsigned long), void const*, void const*, unsigned long) /build/gcc/src/gcc/libsanitizer/sanitizer_common/sanitizer_common_interceptors.inc:860
    wolfSSL#1 0x7f40d8eb06e6 in __interceptor_memcmp /build/gcc/src/gcc/libsanitizer/sanitizer_common/sanitizer_common_interceptors.inc:892
    wolfSSL#2 0x7f40d8eb06e6 in __interceptor_memcmp /build/gcc/src/gcc/libsanitizer/sanitizer_common/sanitizer_common_interceptors.inc:887
    wolfSSL#3 0x7f40d8c2e830 in DtlsSrtpFindProfile src/ssl.c:1310
    wolfSSL#4 0x7f40d8c2e9ed in DtlsSrtpSelProfiles src/ssl.c:1347
    wolfSSL#5 0x7f40d8c2eada in wolfSSL_CTX_set_tlsext_use_srtp src/ssl.c:1359
    wolfSSL#6 0x563bf381b4c5 in server_test examples/server/server.c:2278
    wolfSSL#7 0x7f40d88f0258 in start_thread (/usr/lib/libpthread.so.0+0x9258)
    wolfSSL#8 0x7f40d88195e2 in __GI___clone (/usr/lib/libc.so.6+0xfe5e2)
```
kojo1 pushed a commit to kojo1/wolfssl that referenced this pull request Mar 4, 2022
@dgarske
Merge pull request wolfSSL#3 from ejohnstown/fixes1
8e3e5a1 
Fixes1
gojimmypi referenced this pull request in gojimmypi/wolfssl Apr 23, 2022
@rizlik @gojimmypi
dtls-srtp: check that length of strings matched before memcomparing
c9a0bb0 
otherwise if profile_str_len is > strlen(gSrtpProfiles[i].name) we end up
comparing memory past gSrtpProfiles[i].name. -fsanitize=address catches this:

```
==100159==ERROR: AddressSanitizer: global-buffer-overflow on address 0x7f40d8d533b2 at pc 0x7f40d8eb014f bp 0x7f40d50fe240 sp 0x7f40d50fd9e8
READ of size 21 at 0x7f40d8d533b2 thread T107
    #0 0x7f40d8eb014e in MemcmpInterceptorCommon(void*, int (*)(void const*, void const*, unsigned long), void const*, void const*, unsigned long) /build/gcc/src/gcc/libsanitizer/sanitizer_common/sanitizer_common_interceptors.inc:860
    #1 0x7f40d8eb06e6 in __interceptor_memcmp /build/gcc/src/gcc/libsanitizer/sanitizer_common/sanitizer_common_interceptors.inc:892
    #2 0x7f40d8eb06e6 in __interceptor_memcmp /build/gcc/src/gcc/libsanitizer/sanitizer_common/sanitizer_common_interceptors.inc:887
    #3 0x7f40d8c2e830 in DtlsSrtpFindProfile src/ssl.c:1310
    #4 0x7f40d8c2e9ed in DtlsSrtpSelProfiles src/ssl.c:1347
    #5 0x7f40d8c2eada in wolfSSL_CTX_set_tlsext_use_srtp src/ssl.c:1359
    #6 0x563bf381b4c5 in server_test examples/server/server.c:2278
    wolfSSL#7 0x7f40d88f0258 in start_thread (/usr/lib/libpthread.so.0+0x9258)
    wolfSSL#8 0x7f40d88195e2 in __GI___clone (/usr/lib/libc.so.6+0xfe5e2)
```
@PaulMartinsen PaulMartinsen mentioned this pull request Mar 9, 2023
Closed
lealem47 pushed a commit to lealem47/wolfssl that referenced this pull request Mar 29, 2023
@toddouska
Merge pull request wolfSSL#3 from wolfSSL/async_intelqa
e6d3b73 
Async Intel QA
@tmael tmael mentioned this pull request Oct 12, 2023
Merged
@dgarske dgarske mentioned this pull request Sep 24, 2024
Merged
@miyazakh miyazakh mentioned this pull request Oct 2, 2024
Closed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@kaleb-himes @toddouska