This was interesting, a minor bug report from a fuzzer was fixed incorrectly leading to a far more serious bug that the fuzzer never found. I don't know what the lesson is, but ¯\_(ツ)_/¯ /cc @hannohttps://twitter.com/ProjectZeroBugs/status/1110866416494768128 …
-
-
Yeah! Or maybe just add a new one that would call directly `verify_chain()`. Looks like the initialization for `common_info_st` object can be copied from `cmd_parser()`. Don't see any other problems, though might've missed some detail.
-
Yay, looks like it's been added:https://gitlab.com/gnutls/gnutls/commit/ad27713bef613e6c4600a0fb83ae48c6d390ff5b …
End of conversation
New conversation -
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.
