diff options
| author | Sergey Kandaurov <pluknet@nginx.com> | 2026-04-15 22:12:28 +0400 |
|---|---|---|
| committer | Sergey Kandaurov <s.kandaurov@f5.com> | 2026-04-16 15:25:55 +0400 |
| commit | 4dd7ec9ae48df272cef2a1ecd4de0a237783828a (patch) | |
| tree | b21c70db1c68f32e145c4f357fc58f9d2f773ddd | |
| parent | abc72c5a57890ba4ce235fe3339dbf31af40604e (diff) | |
| download | nginx-4dd7ec9ae48df272cef2a1ecd4de0a237783828a.tar.gz nginx-4dd7ec9ae48df272cef2a1ecd4de0a237783828a.tar.bz2 | |
QUIC: always populate ngx_quic_cbs_recv_rcd() output arguments
Although uninitialized values aren't used in practice due to the
nature of the OpenSSL code flow, this violates the API contract.
Reported by lukefr09 on GitHub.
| -rw-r--r-- | src/event/quic/ngx_event_quic_ssl.c | 4 |
1 files changed, 4 insertions, 0 deletions
diff --git a/src/event/quic/ngx_event_quic_ssl.c b/src/event/quic/ngx_event_quic_ssl.c index 18992ae1b..4e84f8102 100644 --- a/src/event/quic/ngx_event_quic_ssl.c +++ b/src/event/quic/ngx_event_quic_ssl.c @@ -158,6 +158,7 @@ ngx_quic_cbs_recv_rcd(ngx_ssl_conn_t *ssl_conn, if (b->sync) { /* hole */ + *data = NULL; *bytes_read = 0; break; @@ -169,6 +170,9 @@ ngx_quic_cbs_recv_rcd(ngx_ssl_conn_t *ssl_conn, break; } + *data = NULL; + *bytes_read = 0; + return 1; } |