Join GitHub today
GitHub is home to over 50 million developers working together to host and review code, manage projects, and build software together.Sign up
sftp segfault with macOS curl 7.69.0 #5041
I did this
and got a segfault
I expected the following
not to segfault ;)
curl 7.69.0-DEV (Darwin) libcurl/7.69.0-DEV OpenSSL/1.0.2s zlib/1.2.11 libssh2/1.9.0_DEV nghttp2/1.26.0
The struct in question is documented in libssh2.h:
and it specifically says it can be NULL so our code is just not correct!
Can reproduce on 0a04dc4
I get the error that the SSL cert is bad. If I pass
thx - the fix is straightforward eg. check for null in vssh/libssh2.c:697 (which as @bagder pointed out was added in #4747 and caused the regression)... building out the test is most of the work eg. I also want to include a few representative known_hosts files (with and without corrupted entries) - will have PR ready for review tomorrow.