Open DemiMarie opened 1 year ago
We have WPACKET which is basically that. We just need to use it where appropriate.
We have WPACKET which is basically that. We just need to use it where appropriate.
I consider all parsing of untrusted data to be appropriate uses. In particular, this includes the ASN.1 encoder and decoder.
And the punycode implementation.
marking as inactive, will be closed at the completion of 3.4 dev without further input
BoringSSL and LibreSSL have CBB and CBS structures that avoid buffer overflows. OpenSSL should use something similar for all internal buffer management.