root
/
openssl
mirror of https://github.com/openssl/openssl.git
1
0
Fork 0
Code Issues Actions 7 Packages Projects Releases Wiki Activity
openssl/apps
History
Zhou Qingyang ea5ef33be1 Fix a possible NULL pointer dereference in create_cert_store() 
In create_cert_store(), X509_STORE_new() is called and there is a
dereference of it in following function X509_STORE_add_lookup()
without check, which could lead to NULL pointer dereference.

Fix this by adding a NULL check of X509_STORE_new()

Reviewed-by: Shane Lontis <shane.lontis@oracle.com>
Reviewed-by: Tomas Mraz <tomas@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/18057)

(cherry picked from commit 3f075967f6)
 		2022-04-21 08:34:34 +02:00
..
demoSRP Remove unnecessary trailing whitespace 2019-02-05 16:25:11 +01:00
include Fix copyrights 2022-02-03 13:58:55 +01:00
lib Update copyright year 2022-03-15 13:52:58 +00:00
CA.pl.in apps/CA.pl.in: restore the quotes around -CAfile, they were there for a reason 2021-06-26 06:43:09 +02:00
asn1parse.c find-doc-nits: Make -c option (cmd-nits) independent of app build and execution 2021-05-18 13:02:23 +02:00
build.info CMP test server: move apps/{,lib/}cmp_mock_srv.c and apps/{,include/}cmp_mock_srv.h 2021-05-20 16:23:27 +02:00
ca-cert.srl
ca-key.pem Fix verify(1) to report failure when verification fails 2016-01-13 17:55:17 -05:00
ca-req.pem Fix verify(1) to report failure when verification fails 2016-01-13 17:55:17 -05:00
ca.c Remove executable mode attributes of non-executable files 2021-07-13 16:04:32 +10:00
cert.pem
ciphers.c Update copyright year 2022-03-15 13:52:58 +00:00
client.pem
cmp.c Update copyright year 2022-03-15 13:52:58 +00:00
cms.c CMS app: Fix new -wrap option 2021-08-25 20:01:09 +02:00
crl.c Add support for ISO 8601 datetime format 2021-06-11 12:39:46 +02:00
crl2pkcs7.c find-doc-nits: Make -c option (cmd-nits) independent of app build and execution 2021-05-18 13:02:23 +02:00
ct_log_list.cnf Remove unnecessary trailing whitespace 2019-02-05 16:25:11 +01:00
dgst.c Fix unsafe BIO_get_md_ctx check 2021-10-08 11:47:41 +02:00
dhparam.c EVP_PKEY_paramgen_init: fix return check 2021-11-16 17:32:45 +01:00
dsa-ca.pem Fix verify(1) to report failure when verification fails 2016-01-13 17:55:17 -05:00
dsa-pca.pem Fix verify(1) to report failure when verification fails 2016-01-13 17:55:17 -05:00
dsa.c Rename all getters to use get/get0 in name 2021-06-01 12:40:00 +02:00
dsa512.pem
dsa1024.pem
dsap.pem
dsaparam.c EVP_PKEY_keygen_init: fix return check 2021-11-16 17:33:38 +01:00
ec.c Rename all getters to use get/get0 in name 2021-06-01 12:40:00 +02:00
ecparam.c apps: Fix the mismatch of SM2 keys keymgmt 2021-05-26 16:57:40 +02:00
enc.c apps: remove AEAD/mode checks that are now redundant 2021-06-16 18:32:30 +10:00
engine.c Update copyright year 2021-05-06 13:03:23 +01:00
errstr.c Check non-option arguments 2020-12-15 11:47:17 +01:00
fipsinstall.c fipsinstall: use the app's libctx and property query when searching for algorithms 2021-06-15 18:26:47 +10:00
gendsa.c Rename all getters to use get/get0 in name 2021-06-01 12:40:00 +02:00
genpkey.c genpkey: -quiet doesn't take an argument 2021-08-12 16:26:22 +10:00
genrsa.c Add warning to key/param generating apps on potential delay due to missing entropy 2021-05-25 15:16:54 +02:00
info.c Update copyright year 2021-05-06 13:03:23 +01:00
insta.ca.crt openssl-cmp.pod.in: Update and extend example using Insta Demo CA 2020-08-04 12:11:46 +02:00
kdf.c kdf: use the app's libctx and property query when searching for algorithms 2021-06-15 18:26:47 +10:00
list.c list: use the app's libctx and property query when searching for algorithms 2021-06-15 18:26:47 +10:00
mac.c coverity: fix 1484540 resource leak 2021-05-12 11:11:53 +10:00
nseq.c Update copyright year 2021-05-06 13:03:23 +01:00
ocsp.c Fix wild pointer dereference in make_ocsp_response() 2022-04-21 08:10:09 +02:00
openssl-vms.cnf Disclaimer about the default provider activation added to config 2021-08-12 09:59:34 +02:00
openssl.c Clean up on failed BIO creation 2021-10-22 11:57:13 +02:00
openssl.cnf Disclaimer about the default provider activation added to config 2021-08-12 09:59:34 +02:00
passwd.c Update copyright year 2022-03-15 13:52:58 +00:00
pca-cert.srl
pca-key.pem Fix verify(1) to report failure when verification fails 2016-01-13 17:55:17 -05:00
pca-req.pem Fix verify(1) to report failure when verification fails 2016-01-13 17:55:17 -05:00
pkcs7.c APPS: Replace 'OPT_ERR = -1, OPT_EOF = 0, OPT_HELP' by OPT_COMMON macro 2021-05-05 20:48:20 +02:00
pkcs8.c Make the -inform option to be respected if possible 2021-05-06 11:43:32 +01:00
pkcs12.c apps/pkcs12: Do not assume null termination of ASN1_UTF8STRING 2021-08-31 12:20:12 +02:00
pkey.c APPS: Restore the possibility to combine -pubout with -text 2021-06-10 08:34:09 +02:00
pkeyparam.c APPS: Replace 'OPT_ERR = -1, OPT_EOF = 0, OPT_HELP' by OPT_COMMON macro 2021-05-05 20:48:20 +02:00
pkeyutl.c Update copyright year 2022-03-15 13:52:58 +00:00
prime.c Update copyright year 2021-05-06 13:03:23 +01:00
privkey.pem
progs.pl Update copyright year 2022-03-15 13:52:58 +00:00
rand.c APPS: Replace 'OPT_ERR = -1, OPT_EOF = 0, OPT_HELP' by OPT_COMMON macro 2021-05-05 20:48:20 +02:00
rehash.c Update copyright year 2022-03-15 13:52:58 +00:00
req.c req, x509: Allow printing modulus of RSA-PSS keys 2022-04-01 09:37:50 +02:00
req.pem
rsa.c Make `openssl check -rsa ...` to work for both RSA and RSA-PSS. 2022-03-22 14:02:49 +01:00
rsa8192.pem Fix rsa8192.pem 2020-05-13 06:28:36 +02:00
rsautl.c Rename all getters to use get/get0 in name 2021-06-01 12:40:00 +02:00
s512-key.pem
s512-req.pem
s1024key.pem
s1024req.pem
s_client.c Update copyright year 2022-03-15 13:52:58 +00:00
s_server.c Update copyright year 2022-03-15 13:52:58 +00:00
s_time.c s_time: avoid unlikely division by zero 2021-06-30 13:55:09 +10:00
server.pem Replace apps/server.pem with certificate with a sha256 signature. 2020-01-25 14:10:40 +01:00
server.srl
server2.pem
sess_id.c Update copyright year 2021-05-06 13:03:23 +01:00
smime.c apps: use get_cipher_any() instead of get_cipher() for commands that support these ciphers/modes 2021-06-16 18:32:30 +10:00
speed.c Update copyright year 2022-03-15 13:52:58 +00:00
spkac.c spkac: allow digests other than MD5 to be used for signing 2021-06-15 18:26:34 +10:00
srp.c openssl srp: make index.txt parsing error more verbose 2021-05-24 14:37:00 +02:00
storeutl.c Make the -inform option to be respected if possible 2021-05-06 11:43:32 +01:00
testCA.pem
testdsa.h Replace OSSL_PARAM_BLD_free_params() with OSSL_PARAM_free(). 2021-04-12 16:55:30 +10:00
testrsa.h Following the license change, modify the boilerplates in apps/ 2018-12-06 14:15:27 +01:00
timeouts.h Fix header file include guard names 2019-09-28 20:26:36 +02:00
ts.c Fix a possible NULL pointer dereference in create_cert_store() 2022-04-21 08:34:34 +02:00
tsget.in Update copyright year 2021-12-14 14:41:27 +00:00
verify.c Update copyright year 2022-03-15 13:52:58 +00:00
version.c Update copyright year 2021-05-06 13:03:23 +01:00
vms_decc_init.c VMS: move copy_argc to its own module and make it an aux source 2019-03-05 08:51:09 +01:00
x509.c req, x509: Allow printing modulus of RSA-PSS keys 2022-04-01 09:37:50 +02:00