lib: Fix getting text certificates - ouroboros

diff options

author	Dimitri Staessens <dimitri@ouroboros.rocks>	2026-01-18 16:48:37 +0100
committer	Sander Vrijders <sander@ouroboros.rocks>	2026-01-23 08:24:42 +0100
commit	ea52d52754d58edac81bfb10fc4c59fcc8b59935 (patch)
tree	a2adb7fb28897079588db4f53802bc1ed78363cd /src/lib/sha3.c
parent	cfdda74096f9dc706d909ec7bcb02b962d1b25e3 (diff)
download	ouroboros-ea52d52754d58edac81bfb10fc4c59fcc8b59935.tar.gz ouroboros-ea52d52754d58edac81bfb10fc4c59fcc8b59935.zip

lib: Fix getting text certificates

The openssl_crt_str function was using BIO_get_mem_data() but this is not guaranteed to be NULL-terminated, causing buffer overruns. This was the root cause of ASan tests with certificates running for minutes and eventually getting killed on the CI/CD pipeline: Start 1: lib/auth_test 1/26 Test #1: lib/auth_test ......................***Skipped 312.75 sec Start 16: irmd/oap/oap_test 16/26 Test #16: irmd/oap/oap_test ..................***Skipped 345.87 sec Signed-off-by: Dimitri Staessens <dimitri@ouroboros.rocks> Signed-off-by: Sander Vrijders <sander@ouroboros.rocks>

Diffstat (limited to 'src/lib/sha3.c')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: