[openssl-commits] Still Failing: openssl/openssl#2752 (master - a1673e1)

Travis CI builds at travis-ci.org
Thu Mar 10 03:49:17 UTC 2016

Build Update for openssl/openssl

Build: #2752
Status: Still Failing

Duration: 15 minutes and 2 seconds
Commit: a1673e1 (master)
Author: Benjamin Kaduk
Message: Avoid negative array index in BIO_debug_callback()

BIO_snprintf() can return -1 on truncation (and overflow as of commit
9cb177301fdab492e4cfef376b28339afe3ef663).  Though neither can
realistically occur while printing a pointer and short fixed string into
a buffer of length 256, the analysis to confirm that this the case goes
somewhat far up the call chain, and not all static analyzers can
successfully follow the chain of logic.

It's easy enough to clamp the returned length to be nonnegative before
continuing, which appeases the static analyzer and does not harm the
subsequent code.

Reviewed-by: Richard Levitte <levitte at openssl.org>
Reviewed-by: Rich Salz <rsalz at openssl.org>

View the changeset: https://github.com/openssl/openssl/compare/b805b4440dbd...a1673e153672

View the full build log and details: https://travis-ci.org/openssl/openssl/builds/114957011


You can configure recipients for build notifications in your .travis.yml file. See https://docs.travis-ci.com/user/notifications

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://mta.openssl.org/pipermail/openssl-commits/attachments/20160310/f04b5c1d/attachment.html>

More information about the openssl-commits mailing list