luo980/curl
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
f36e32b5b8
curl/lib/vtls
History
Jan Venekamp f36e32b5b8 bearssl: fix EXC_BAD_ACCESS on incomplete CA cert 
- Do not create trust anchor object for a CA certificate until after it
  is processed.

Prior to this change the object was created at state BR_PEM_BEGIN_OBJ
(certificate processing begin state). An incomplete certificate (for
example missing a newline at the end) never reaches BR_PEM_END_OBJ
(certificate processing end state) and therefore the trust anchor data
was not set in those objects, which caused EXC_BAD_ACCESS.

Ref: https://github.com/curl/curl/pull/8106

Closes https://github.com/curl/curl/pull/8476
2022-02-20 02:52:56 -05:00
..
bearssl.c bearssl: fix EXC_BAD_ACCESS on incomplete CA cert 2022-02-20 02:52:56 -05:00
bearssl.h copyright: fix year ranges 2020-11-05 08:22:10 +01:00
gskit.c gskit: Convert to using Curl_poll 2022-02-16 09:27:39 +01:00
gskit.h copyright: fix year ranges 2020-11-05 08:22:10 +01:00
gtls.c vtls: pass on the right SNI name 2022-01-27 08:36:10 +01:00
gtls.h gtls: add gnutls include for the session type 2021-12-29 23:46:13 +01:00
hostcheck.c hostcheck: reduce strlen calls on chained certificates 2022-02-13 11:42:47 +01:00
hostcheck.h hostcheck: reduce strlen calls on chained certificates 2022-02-13 11:42:47 +01:00
keylog.c curl.se: new home 2020-11-04 23:59:47 +01:00
keylog.h curl.se: new home 2020-11-04 23:59:47 +01:00
mbedtls_threadlock.c misc: update incorrect copyright year ranges 2021-08-16 11:21:47 +02:00
mbedtls_threadlock.h curl.se: new home 2020-11-04 23:59:47 +01:00
mbedtls.c mbedtls: enable use of mbedtls without filesystem functions support 2022-02-03 09:39:11 +01:00
mbedtls.h copyright: fix year ranges 2020-11-05 08:22:10 +01:00
nss.c nss: handshake callback during shutdown has no conn->bundle 2022-01-28 16:02:38 +01:00
nssg.h copyright: fix year ranges 2020-11-05 08:22:10 +01:00
openssl.c openssl: fix build for version < 1.1.0 2022-02-18 08:08:04 +01:00
openssl.h openssl.h: avoid including OpenSSL headers here 2022-01-08 14:39:12 +01:00
rustls.c vtls: pass on the right SNI name 2022-01-27 08:36:10 +01:00
rustls.h copyright: update copyright year ranges to 2021 2021-03-27 23:00:14 +01:00
schannel_verify.c hostcheck: reduce strlen calls on chained certificates 2022-02-13 11:42:47 +01:00
schannel.c schannel: move the algIds array out of schannel.h 2022-02-18 08:03:22 +01:00
schannel.h schannel: move the algIds array out of schannel.h 2022-02-18 08:03:22 +01:00
sectransp.c vtls: pass on the right SNI name 2022-01-27 08:36:10 +01:00
sectransp.h copyright: fix year ranges 2020-11-05 08:22:10 +01:00
vtls.c lib: remove support for CURL_DOES_CONVERSIONS 2022-02-04 08:05:35 +01:00
vtls.h vtls: pass on the right SNI name 2022-01-27 08:36:10 +01:00
wolfssl.c wolfssl: return CURLE_AGAIN for the SSL_ERROR_NONE case 2022-02-11 12:36:52 +01:00
wolfssl.h copyright: fix year ranges 2020-11-05 08:22:10 +01:00
x509asn1.c hostcheck: reduce strlen calls on chained certificates 2022-02-13 11:42:47 +01:00
x509asn1.h x509asn1: toggle off functions not needed for diff tls backends 2022-02-05 00:11:34 +01:00