diff options
| author | Sergey Kandaurov <pluknet@nginx.com> | 2026-04-15 22:12:28 +0400 |
|---|---|---|
| committer | Sergey Kandaurov <s.kandaurov@f5.com> | 2026-04-16 15:25:55 +0400 |
| commit | 4dd7ec9ae48df272cef2a1ecd4de0a237783828a (patch) | |
| tree | b21c70db1c68f32e145c4f357fc58f9d2f773ddd /src/event | |
| parent | abc72c5a57890ba4ce235fe3339dbf31af40604e (diff) | |
| download | nginx-4dd7ec9ae48df272cef2a1ecd4de0a237783828a.tar.gz nginx-4dd7ec9ae48df272cef2a1ecd4de0a237783828a.tar.bz2 | |
QUIC: always populate ngx_quic_cbs_recv_rcd() output arguments
Although uninitialized values aren't used in practice due to the
nature of the OpenSSL code flow, this violates the API contract.
Reported by lukefr09 on GitHub.
Diffstat (limited to 'src/event')
| -rw-r--r-- | src/event/quic/ngx_event_quic_ssl.c | 4 |
1 files changed, 4 insertions, 0 deletions
diff --git a/src/event/quic/ngx_event_quic_ssl.c b/src/event/quic/ngx_event_quic_ssl.c index 18992ae1b..4e84f8102 100644 --- a/src/event/quic/ngx_event_quic_ssl.c +++ b/src/event/quic/ngx_event_quic_ssl.c @@ -158,6 +158,7 @@ ngx_quic_cbs_recv_rcd(ngx_ssl_conn_t *ssl_conn, if (b->sync) { /* hole */ + *data = NULL; *bytes_read = 0; break; @@ -169,6 +170,9 @@ ngx_quic_cbs_recv_rcd(ngx_ssl_conn_t *ssl_conn, break; } + *data = NULL; + *bytes_read = 0; + return 1; } |