mirrors/haproxy
1
0
Fork 0
mirror of https://git.haproxy.org/git/haproxy.git/ synced 2025-09-22 14:21:25 +02:00
Code Issues Projects Releases Wiki Activity

BUG/MEDIUM: quic: fix crash on CC if mux not present

Browse Source 
If a CONNECTION_CLOSE is received during handshake or after mux release,
a segfault happens due to invalid dereferencement of qc->qcc. Check
mux_state first to prevent this.
This commit is contained in:
Amaury Denoyelle 2022-02-15 11:06:15 +01:00
parent 8524f0f779
commit 4af6595d41
1 changed files with 2 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

1
src/xprt_quic.c
View File

@ -2448,6 +2448,7 @@ static int qc_parse_pkt_frms(struct quic_rx_packet *pkt, struct ssl_sock_ctx *ct
case QUIC_FT_CONNECTION_CLOSE:
case QUIC_FT_CONNECTION_CLOSE_APP:
/* warn the mux to close the connection */
if (qc->mux_state == QC_MUX_READY)
qc->qcc->flags |= QC_CF_CC_RECV;
tasklet_wakeup(qc->qcc->wait_event.tasklet);
break;