Bug #15760: OpenSSL::BN.new(nil, 2) dumps core - Ruby master - Ruby Issue Tracking System

Actions

Copy link

Bug #15760

closed

OpenSSL::BN.new(nil, 2) dumps core

Added by mame (Yusuke Endoh) over 5 years ago. Updated over 5 years ago.

Status:

Closed

Assignee:

rhenium (Kazuki Yamaguchi)

Target version:

ruby -v:

ruby 2.7.0dev (2019-04-10 trunk 67496) [x86_64-linux]

Backport:

2.4: REQUIRED, 2.5: REQUIRED, 2.6: DONE

[ruby-core:92231]

Description

ext/openssl/ossl_bn.c

 221         if (!BN_bin2bn((unsigned char *)StringValuePtr(str), RSTRING_LENINT(str), bn)) {
 222             ossl_raise(eBNError, NULL);
 223         }
 224         break;

This code depends on the evaluation order of function arguments. It works if StringValuePtr(str) is evaluated earlier than RSTRING_LENINT(str), but it doesn't if the order is reversed, which causes core dump.

History
Notes
Property changes
Associated revisions

Actions

Copy link

Also available in: Atom PDF

Like0

Like0Like0

Project

General

Profile

Ruby » Ruby master

Custom queries

Bug #15760

OpenSSL::BN.new(nil, 2) dumps core

Updated by mame (Yusuke Endoh) over 5 years ago

Updated by naruse (Yui NARUSE) over 5 years ago