]> git.kaiwu.me - nginx.git/commit
projects / nginx.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: cca5655) | patch
QUIC: ignore CRYPTO frames after handshake completion.
authorRoman Arutyunyan <arut@nginx.com>
Tue, 28 May 2024 13:19:08 +0000 (17:19 +0400)
committerRoman Arutyunyan <arut@nginx.com>
Tue, 28 May 2024 13:19:08 +0000 (17:19 +0400)
commit6f8c520f497edfe26f46ef6da6699174df5b3da4
tree59be73c67fe4f101a5fe48f7ccadbe0bdf9dbf8dtree | snapshot
parentcca5655dd9ba349817946a0db14f8b1f633f700acommit | diff
QUIC: ignore CRYPTO frames after handshake completion.

Sending handshake-level CRYPTO frames after the client's Finished message could
lead to memory disclosure and a potential segfault, if those frames are sent in
one packet with the Finished frame.
src/event/quic/ngx_event_quic_ssl.c diff | blob | history
nginx upstream