GitHub/openssl
1
0
Fork 0
mirror of https://github.com/openssl/openssl.git synced 2026-05-07 20:12:39 +00:00
Code Issues Packages Projects Releases Wiki Activity
Files
ef079ec8222d3d7ae6ee46134635d69a8533d9bf
openssl/apps
T
History
Eugene Syromiatnikov 18097ee961 apps/lib/apps.c: use fstat on an opened fd in app_mmap_file() 
Coverity has rightfully complained that using stat() before opening file
leads to TOCTOU issues, refactor the code to open the file first and
then perform stat checks on the opened file descriptor.  It is still far
from foolproof, as the file is not locked, and stat() is used elsewhere,
but at least it seems to be a step in the right direction.

Resolves: https://scan5.scan.coverity.com/#/project-view/65248/10222?selectedIssue=1690686
Fixes: 80b7e49c27 "Use mmap for pkeyutl -rawin and dgst one-shot input"
Signed-off-by: Eugene Syromiatnikov <esyr@openssl.org>

Reviewed-by: Neil Horman <nhorman@openssl.org>
Reviewed-by: Paul Dale <paul.dale@oracle.com>
MergeDate: Wed Apr  1 12:46:08 2026
(Merged from https://github.com/openssl/openssl/pull/30624)
2026-04-01 08:46:01 -04:00
..
demoSRP
Fix grammar in srp_verifier.txt
2024-04-25 11:07:20 +02:00
include
Use mmap for pkeyutl -rawin and dgst one-shot input
2026-03-27 17:25:31 +01:00
lib
apps/lib/apps.c: use fstat on an opened fd in app_mmap_file()
2026-04-01 08:46:01 -04:00
asn1parse.c
Copyright year updates
2026-03-10 14:37:52 +00:00
build.info
ECH build artefacts and a bit of code
2026-02-20 16:40:25 +00:00
ca-cert.srl
ca-key.pem
ca-req.pem
ca.c
ca.c: Partially revert incorrect simplification of string check
2026-03-18 09:31:30 -04:00
CA.pl.in
Copyright year updates
2025-09-02 13:05:45 +00:00
cert.pem
ciphers.c
Copyright year updates
2026-03-10 14:37:52 +00:00
client.pem
cmp.c
apps/cmp.c: minor code refactoring on -no_cache_extracerts, tweak mock server error message
2026-03-25 10:42:04 +01:00
cms.c
Copyright year updates
2026-03-10 14:37:52 +00:00
configutl.c
Copyright year updates
2026-03-10 14:37:52 +00:00
crl2pkcs7.c
Copyright year updates
2026-03-10 14:37:52 +00:00
crl.c
Copyright year updates
2026-03-10 14:37:52 +00:00
ct_log_list.cnf
dgst.c
Use mmap for pkeyutl -rawin and dgst one-shot input
2026-03-27 17:25:31 +01:00
dhparam.c
Copyright year updates
2026-03-10 14:37:52 +00:00
dsa512.pem
dsa1024.pem
dsa-ca.pem
dsa-pca.pem
dsa.c
Copyright year updates
2026-03-10 14:37:52 +00:00
dsap.pem
dsaparam.c
Copyright year updates
2026-03-10 14:37:52 +00:00
ec.c
Copyright year updates
2026-03-10 14:37:52 +00:00
ech.c
Copyright year updates
2026-03-10 14:37:52 +00:00
ecparam.c
Copyright year updates
2026-03-10 14:37:52 +00:00
enc.c
Copyright year updates
2026-03-10 14:37:52 +00:00
errstr.c
4.0-POST-CLANG-FORMAT-WEBKIT
2025-12-09 00:28:19 -07:00
fipsinstall.c
Copyright year updates
2026-03-10 14:37:52 +00:00
gendsa.c
Copyright year updates
2026-03-10 14:37:52 +00:00
genpkey.c
Copyright year updates
2026-03-10 14:37:52 +00:00
genrsa.c
Copyright year updates
2026-03-10 14:37:52 +00:00
info.c
4.0-POST-CLANG-FORMAT-WEBKIT
2025-12-09 00:28:19 -07:00
insta.ca.crt
kdf.c
Copyright year updates
2026-03-10 14:37:52 +00:00
list.c
feat: Disabled features are generated during configure automatically
2026-03-13 16:52:12 +01:00
mac.c
Copyright year updates
2026-03-10 14:37:52 +00:00
nseq.c
4.0-POST-CLANG-FORMAT-WEBKIT
2025-12-09 00:28:19 -07:00
ocsp.c
x509: remove OCSP_TRUSTOTHER from stapled response and issuer fallback paths
2026-03-21 21:58:21 +01:00
openssl-vms.cnf
Polish AKID/SKID handling and related docs
2026-03-02 12:04:10 -05:00
openssl.c
Copyright year updates
2026-03-10 14:37:52 +00:00
openssl.cnf
Polish AKID/SKID handling and related docs
2026-03-02 12:04:10 -05:00
passwd.c
Copyright year updates
2026-03-10 14:37:52 +00:00
pca-cert.srl
pca-key.pem
pca-req.pem
pkcs7.c
Copyright year updates
2026-03-10 14:37:52 +00:00
pkcs8.c
Copyright year updates
2026-03-10 14:37:52 +00:00
pkcs12.c
PKCS12 app fix
2026-03-12 11:47:13 +01:00
pkey.c
Copyright year updates
2026-03-10 14:37:52 +00:00
pkeyparam.c
Copyright year updates
2026-03-10 14:37:52 +00:00
pkeyutl.c
Use mmap for pkeyutl -rawin and dgst one-shot input
2026-03-27 17:25:31 +01:00
prime.c
Copyright year updates
2026-03-10 14:37:52 +00:00
privkey.pem
progs.pl
Fix apps/progs.pl to be slightly less fragile
2025-12-03 14:40:56 +01:00
rand.c
Copyright year updates
2026-03-10 14:37:52 +00:00
rehash.c
Copyright year updates
2026-03-10 14:37:52 +00:00
req.c
Copyright year updates
2026-03-10 14:37:52 +00:00
req.pem
rsa8192.pem
rsa.c
Copyright year updates
2026-03-10 14:37:52 +00:00
rsautl.c
Copyright year updates
2026-03-10 14:37:52 +00:00
s512-key.pem
s512-req.pem
s1024key.pem
s1024req.pem
s_client.c
Implement RFC 8701 GREASE for TLS ClientHello
2026-03-17 10:57:59 -04:00
s_server.c
ECH: chunk-size bug fix and non-regression changes
2026-03-19 11:35:54 +01:00
s_time.c
Copyright year updates
2026-03-10 14:37:52 +00:00
server2.pem
server.pem
server.srl
sess_id.c
Copyright year updates
2026-03-10 14:37:52 +00:00
skeyutl.c
Copyright year updates
2026-03-10 14:37:52 +00:00
smime.c
Copyright year updates
2026-03-10 14:37:52 +00:00
speed.c
Copyright year updates
2026-03-10 14:37:52 +00:00
spkac.c
Copyright year updates
2026-03-10 14:37:52 +00:00
srp.c
Copyright year updates
2026-03-10 14:37:52 +00:00
storeutl.c
Copyright year updates
2026-03-10 14:37:52 +00:00
testCA.pem
testdsa.h
4.0-POST-CLANG-FORMAT-WEBKIT
2025-12-09 00:28:19 -07:00
testrsa.h
4.0-POST-CLANG-FORMAT-WEBKIT
2025-12-09 00:28:19 -07:00
timeouts.h
4.0-POST-CLANG-FORMAT-WEBKIT
2025-12-09 00:28:19 -07:00
ts.c
Don't eat a NULL if a queryfile is not provided
2026-03-31 11:47:38 +02:00
tsget.in
convert tabs to spaces in two distributed Perl scripts
2021-09-14 07:21:22 +10:00
verify.c
Copyright year updates
2026-03-10 14:37:52 +00:00
version.c
4.0-POST-CLANG-FORMAT-WEBKIT
2025-12-09 00:28:19 -07:00
vms_decc_init.c
4.0-POST-CLANG-FORMAT-WEBKIT
2025-12-09 00:28:19 -07:00
x509.c
Copyright year updates
2026-03-10 14:37:52 +00:00