diff options
author | Rich Felker <dalias@aerifal.cx> | 2016-02-16 17:38:07 -0500 |
---|---|---|
committer | Rich Felker <dalias@aerifal.cx> | 2016-02-16 17:38:07 -0500 |
commit | cf115059ba0ecd611008c89c78c37b62f8e6d6af (patch) | |
tree | b54cd9ffab93bfe1eafcf6c084b5cc2fec9397ed /src/locale/duplocale.c | |
parent | ef2b5e9f13a7f216d6d64aeccc6b33c1262faece (diff) | |
download | musl-cf115059ba0ecd611008c89c78c37b62f8e6d6af.tar.gz musl-cf115059ba0ecd611008c89c78c37b62f8e6d6af.tar.bz2 musl-cf115059ba0ecd611008c89c78c37b62f8e6d6af.tar.xz musl-cf115059ba0ecd611008c89c78c37b62f8e6d6af.zip |
in crypt-sha*, reject excessive rounds as error rather than clamping
the reference implementation clamps rounds to [1000,999999999]. we
further limited rounds to at most 9999999 as a defense against extreme
run times, but wrongly clamped instead of treating out-of-bounds
values as an error, thereby producing implementation-specific hash
results. fixing this should not break anything since values of rounds
this high are not useful anyway.
Diffstat (limited to 'src/locale/duplocale.c')
0 files changed, 0 insertions, 0 deletions