mirrors/haproxy
1
0
Fork 0
mirror of https://git.haproxy.org/git/haproxy.git/ synced 2025-11-29 14:50:59 +01:00
Code Issues Projects Releases Wiki Activity

MINOR: ssl: fix build in release mode

Browse Source 
Fix potential null pointer dereference. In fact, this case is not
possible, only a mistake in SSL ex-data initialization may cause it :
either connection is set or quic_conn, which allows to retrieve
the bind_conf.

A BUG_ON was already present but this does not cover release build.
This commit is contained in:
Amaury Denoyelle 2022-01-24 11:04:05 +01:00
parent 33ac346ba8
commit 7c564bfdd3
1 changed files with 12 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

14
src/ssl_sock.c
View File

@ -1537,7 +1537,12 @@ void ssl_sock_infocbk(const SSL *ssl, int where, int ret)
else if (qc) else if (qc)
ctx = qc->xprt_ctx; ctx = qc->xprt_ctx;
#endif /* USE_QUIC */ #endif /* USE_QUIC */
BUG_ON(!ctx);
if (!ctx) {
/* must never happen */
ABORT_NOW();
return;
}
#ifndef SSL_OP_NO_RENEGOTIATION #ifndef SSL_OP_NO_RENEGOTIATION
/* Please note that BoringSSL defines this macro to zero so don't /* Please note that BoringSSL defines this macro to zero so don't
@ -2488,7 +2493,12 @@ int ssl_sock_switchctx_cbk(SSL *ssl, int *al, void *arg)
else if (qc) else if (qc)
s = qc->li->bind_conf; s = qc->li->bind_conf;
#endif /* USE_QUIC */ #endif /* USE_QUIC */
BUG_ON(!s);
if (!s) {
/* must never happen */
ABORT_NOW();
return 0;
}
#ifdef USE_QUIC #ifdef USE_QUIC
if (qc) { if (qc) {