Don't use getenv for critical functions when run as setuid/setgid Reviewed-by: Richard Levitte <levitte@openssl.org> Reviewed-by: Matt Caswell <matt@openssl.org> (Merged from https://github.com/openssl/openssl/pull/5856)

commit: 284f4f6b70998b2b46dc74c3003c82cb1db0e742 [log] [tgz]
author: Bernd Edlinger <bernd.edlinger@hotmail.de> Wed Apr 04 14:45:49 2018 +0200
committer: Bernd Edlinger <bernd.edlinger@hotmail.de> Wed Apr 04 14:45:49 2018 +0200
tree: b5bf90f6a5a1803c699f182fb756d52e2c0d450a
parent: dc55e4f70f401c5869410d6a0c068c18c3fd53ec [diff] [blame]
diff --git a/CHANGES b/CHANGES
index b4d0329..40b5823 100644
--- a/CHANGES
+++ b/CHANGES

@@ -9,6 +9,10 @@
 
  Changes between 1.1.0h and 1.1.1 [xx XXX xxxx]
 
+  *) Don't use OPENSSL_ENGINES and OPENSSL_CONF environment values
+     in libcrypto when run as setuid/setgid.
+     [Bernd Edlinger]
+
   *) Added new public header file <openssl/rand_drbg.h> and documentation
      for the RAND_DRBG API. See manual page RAND_DRBG(7) for an overview.
      [Matthias St. Pierre]
commit	284f4f6b70998b2b46dc74c3003c82cb1db0e742	[log] [tgz]
author	Bernd Edlinger <bernd.edlinger@hotmail.de>	Wed Apr 04 14:45:49 2018 +0200
committer	Bernd Edlinger <bernd.edlinger@hotmail.de>	Wed Apr 04 14:45:49 2018 +0200
tree	b5bf90f6a5a1803c699f182fb756d52e2c0d450a
parent	dc55e4f70f401c5869410d6a0c068c18c3fd53ec [diff] [blame]