Closed
Bug 1588557
Opened 5 years ago
Closed 5 years ago
Bad debug statement in tls13con.c
Categories
(NSS :: Libraries, defect, P1)
NSS
Libraries
Tracking
(Not tracked)
RESOLVED
FIXED
3.47
People
(Reporter: mt, Assigned: mt)
Details
(Keywords: sec-other)
Attachments
(1 file)
This crashes under certain conditions because the %s is bad. Also, there is a missing space.
https://searchfox.org/nss/rev/3d8cf7bcfc2fcb005fa1e59e856fb842e2a11867/lib/ssl/tls13con.c#917-919
|
Assignee | |
Comment 1•5 years ago
|
||
|
||
Comment 2•5 years ago
|
||
Can someone tell the compiler that SSL_TR() takes printf-like syntax. https://stackoverflow.com/questions/20167124/vsprintf-and-vsnprintf-wformat-nonliteral-warning-on-clang-5-0#20167541
|
|
Assignee | |
Comment 3•5 years ago
|
||
Marking sec-other. This can debug random memory. Because it requires someone to set SSLTRACE in the environment, and the debug logs aren't accessible unless a) this works, and b) someone provides those logs; I'm using sec-other.
Group: crypto-core-security
Keywords: sec-other
|
||
Comment 4•5 years ago
|
||
Status: NEW → RESOLVED
Closed: 5 years ago
Resolution: --- → FIXED
Target Milestone: --- → 3.47
|
||
Updated•5 years ago
|
Group: crypto-core-security → core-security-release
|
|
||
Updated•5 years ago
|
Group: core-security-release
You need to log in
before you can comment on or make changes to this bug.
Description
•