FreeBSD Security Advisory FreeBSD-SA-20:33.openssl

Benjamin Kaduk kaduk at mit.edu
Sun Dec 13 02:07:39 UTC 2020


On Sat, Dec 12, 2020 at 04:57:08PM -0800, John-Mark Gurney wrote:
>
> If FreeBSD is going to continue to use OpenSSL, better testing needs to
> be done to figure out such breakage earliers, and how to not have them
> go undetected for so long.

I don't think anyone would argue against increasing test coverage.
The most important question seems to be how to know what should be getting
tested but isn't.  Do you have any ideas for where to start looking?

Thanks,

Ben


More information about the freebsd-security mailing list