Re: Bug#714219: Acknowledgement (libc6: crypt(3) returns NULL with EINVAL instead of falling back to DES, breaking GNU software)

To: Thorsten Glaser <tg@mirbsd.de>
Cc: 714219@bugs.debian.org, debian-glibc@lists.debian.org
Subject: Re: Bug#714219: Acknowledgement (libc6: crypt(3) returns NULL with EINVAL instead of falling back to DES, breaking GNU software)
From: Aurelien Jarno <aurelien@aurel32.net>
Date: Thu, 27 Jun 2013 02:47:02 +0200
Message-id: <[🔎] 20130627004702.GI13072@hall.aurel32.net>
In-reply-to: <[🔎] Pine.BSM.4.64L.1306270024230.3287@herc.mirbsd.org>
References: <[🔎] 20130626220647.9086.25208.reportbug@tglase.lan.tarent.de> <handler.714219.B.137228441412378.ack@bugs.debian.org> <[🔎] Pine.BSM.4.64L.1306262247030.3287@herc.mirbsd.org> <[🔎] 20130626233558.GA13072@hall.aurel32.net> <[🔎] Pine.BSM.4.64L.1306262348430.3287@herc.mirbsd.org> <[🔎] 20130627001037.GE13072@hall.aurel32.net> <[🔎] Pine.BSM.4.64L.1306270024230.3287@herc.mirbsd.org>

On Thu, Jun 27, 2013 at 12:28:22AM +0000, Thorsten Glaser wrote:
> Aurelien Jarno dixit:
> 
> >ambiguity that crypt can return NULL for any failure (i.e. not
> >successful completion):
> 
> Indeed, but, one, it doesn’t list any other error code (nor do
> the glibc manpages) and two, there _is_ something called common
> law: it’s been like this for decades.
> 
> >This is *your* interpretation of POSIX. Quoting it, there is no
> 
> Do you, by inaction, want to sign responsible for all security
> holes introduced into previously-working code in the archive
> that now, without even a recompilation, breaks?
> 
> Or will you add some small patch fixing this behaviour and
> feed that patch also upstream?
> 

Please provide a patch, and I will add it in the next upload. If you
don't, you will sign responsible for all security holes introduced into
previously-working code in the archive.

-- 
Aurelien Jarno	                        GPG: 1024D/F1BCDB73
aurelien@aurel32.net                 http://www.aurel32.net

Reply to:

Follow-Ups:
- Re: Bug#714219: Acknowledgement (libc6: crypt(3) returns NULL with EINVAL instead of falling back to DES, breaking GNU software)
  - From: Thorsten Glaser <tg@mirbsd.de>

References:
- Bug#714219: libc6: crypt(3) returns NULL with EINVAL instead of falling back to DES, breaking GNU software
  - From: Thorsten Glaser <tg@mirbsd.de>
- Bug#714219: Acknowledgement (libc6: crypt(3) returns NULL with EINVAL instead of falling back to DES, breaking GNU software)
  - From: Thorsten Glaser <tg@mirbsd.de>
- Bug#714219: Acknowledgement (libc6: crypt(3) returns NULL with EINVAL instead of falling back to DES, breaking GNU software)
  - From: Aurelien Jarno <aurelien@aurel32.net>
- Bug#714219: Acknowledgement (libc6: crypt(3) returns NULL with EINVAL instead of falling back to DES, breaking GNU software)
  - From: Thorsten Glaser <tg@mirbsd.de>
- Re: Bug#714219: Acknowledgement (libc6: crypt(3) returns NULL with EINVAL instead of falling back to DES, breaking GNU software)
  - From: Aurelien Jarno <aurelien@aurel32.net>
- Re: Bug#714219: Acknowledgement (libc6: crypt(3) returns NULL with EINVAL instead of falling back to DES, breaking GNU software)
  - From: Thorsten Glaser <tg@mirbsd.de>

Prev by Date: Re: Bug#714219: Acknowledgement (libc6: crypt(3) returns NULL with EINVAL instead of falling back to DES, breaking GNU software)
Next by Date: Bug#713836: regcomp(3) writes past end of regex_t
Previous by thread: Re: Bug#714219: Acknowledgement (libc6: crypt(3) returns NULL with EINVAL instead of falling back to DES, breaking GNU software)
Next by thread: Re: Bug#714219: Acknowledgement (libc6: crypt(3) returns NULL with EINVAL instead of falling back to DES, breaking GNU software)
Index(es):
- Date
- Thread