Closed
Bug 140474
Opened 23 years ago
Closed 23 years ago
PK11_FindCertsFromNickname may cause an assertion failure in nssList_GetArray.
Categories
(NSS :: Libraries, defect)
Tracking
(Not tracked)
RESOLVED
FIXED
3.4.2
People
(Reporter: wtc, Assigned: bugz)
References
Details
(Whiteboard: [adt2 RTM])
Attachments
(1 file)
|
719 bytes,
patch
|
wtc
:
review+
|
Details | Diff | Splinter Review |
nssList_GetArray asserts that the maxElements argument is > 0.
nssList_GetArray will malfunction if maxElements is 0.
It is possible for PK11_FindCertsFromNickname to call nssList_GetArray
with maxElements equal to 0, which causes the assertion to fail:
if (nameList) {
count = nssList_Count(nameList);
foundCerts = nss_ZNEWARRAY(NULL, NSSCertificate *, count + 1);
nssList_GetArray(nameList, (void **)foundCerts, count);
nssList_Destroy(nameList);
}
|
Assignee | |
Comment 1•23 years ago
|
||
|
||
Updated•23 years ago
|
QA Contact: sonja.mirtitsch → bishakhabanerjee
|
|
Assignee | |
Comment 2•23 years ago
|
||
patch checked in to branch, closing bug.
This fix is not needed for the tip.
Status: NEW → RESOLVED
Closed: 23 years ago
Resolution: --- → FIXED
|
Reporter | |
Comment 3•23 years ago
|
||
Comment on attachment 81485 [details] [diff] [review]
patch against 3.4 branch
I think strictly speaking we also need to handle the
failure of nss_ZNEWARRAY (out-of-memory error), that
is, something like:
foundCerts = nss_ZNEWARRAY(NULL, NSSCertificate *, count + 1);
if (foundCerts) {
nssList_GetArray(nameList, (void **)foundCerts, count);
}
but this patch is a strict improvement over the old code.
r=wtc.
Attachment #81485 -
Flags: review+
|
||
Comment 5•23 years ago
|
||
adt1.0.1+ (on ADT's behalf) for checkin to the 1.0 branch. Pls check this in
asap. thanks!
Whiteboard: [adt2 RTM]
|
|
Reporter | |
Updated•23 years ago
|
You need to log in
before you can comment on or make changes to this bug.
Description
•