search

wolfSSL / wolfssl

The wolfSSL library is a small, fast, portable implementation of TLS/SSL for embedded devices to the cloud. wolfSSL supports up to TLS 1.3 and DTLS 1.3!
https://www.wolfssl.com
GNU General Public License v2.0
2.22k stars 798 forks source link

Fix ASAN warning with compatibility layer cipher list parsing #7698

Closed dgarske closed 3 days ago

dgarske commented 1 week ago

Description

wolfssl/src/ssl.c:11892:16: runtime error: applying non-zero offset 1 to null pointer
SUMMARY: UndefinedBehaviorSanitizer: undefined-behavior wolfssl/src/ssl.c:11892:16 in

wolfssl/src/internal.c:26632:16: runtime error: applying non-zero offset 1 to null pointer
SUMMARY: UndefinedBehaviorSanitizer: undefined-behavior wolfssl/src/internal.c:26632:16 in

ZD 18175

Testing

./configure CC="clang -fsanitize=address" --enable-all && make check

Checklist

dgarske commented 1 week ago

Retest this please

dgarske commented 4 days ago

Retest this please