]> git.kaiwu.me - nginx.git/commit
projects / nginx.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 3f2d8cb) | patch
QUIC: ignore CRYPTO frames after handshake completion.
authorRoman Arutyunyan <arut@nginx.com>
Tue, 28 May 2024 13:19:08 +0000 (17:19 +0400)
committerRoman Arutyunyan <arut@nginx.com>
Tue, 28 May 2024 13:19:08 +0000 (17:19 +0400)
commit376f12e40adc83859a4ddea21d27d7c053ce02f8
tree30792f82651fc0c4951e4638360c89bdc273c6b7tree | snapshot
parent3f2d8cb8f92d3c3468478651b58607f1576a12accommit | diff
QUIC: ignore CRYPTO frames after handshake completion.

Sending handshake-level CRYPTO frames after the client's Finished message could
lead to memory disclosure and a potential segfault, if those frames are sent in
one packet with the Finished frame.
src/event/quic/ngx_event_quic_ssl.c diff | blob | history
nginx upstream