OpenBSD/src sJFt01y — lib/libtls tls.c tls_server.c
Use the tls_password_cb() callback with all PEM_read_bio_*() calls, so that we can prevent libcrypto from going behind our back and trying to read passwords from standard input (which we may not be permitted to do). Found by jsg@ with httpd and password protected keys.
Version | Delta | File | |
---|---|---|---|
1.67 | +6 | -6 | lib/libtls/tls.c |
1.39 | +3 | -2 | lib/libtls/tls_server.c |
1.61 | +3 | -1 | lib/libtls/tls_internal.h |
1.9 | +2 | -2 | lib/libtls/tls_util.c |
+14 | -11 | 4 files |