>>>>> "Patrick" == Patrick G Moore <[EMAIL PROTECTED]> writes:
Patrick> Try strdup() with a null pointer. Also, can you guard against
Patrick> uninitialized garbage pointers? If there is a ligitimate use for
Patrick> a null BN pointer in the calling code, it should check for it. On
Patrick> the other hand, it probably would not hurt anything to handle this
Patrick> situation by returning a null. The calling softwares subsequent
Patrick> use of the duped null would have to be allowed for or cause a
Patrick> crash somewhere else. Personally, however, I would not have bothered
Patrick> to fix it. ;)
It is unnaceptable for any library to dump core if such an occurance is
avoidable. It is _especially_ unacceptable in a _security_ library. All
security functions must validate all input parameters, to the best of their
ability. Obviously, garbage pointers are not easily detectable without
trapping bus errors, but null pointers are.
--
Carson Gaspar -- [EMAIL PROTECTED] [EMAIL PROTECTED] [EMAIL PROTECTED]
http://www.cs.columbia.edu/~carson/home.html
Queen Trapped in a Butch Body
______________________________________________________________________
OpenSSL Project http://www.openssl.org
User Support Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
