git.ipfire.org Git - thirdparty/haproxy.git/commit

author	Amaury Denoyelle <adenoyelle@haproxy.com>
	Fri, 30 Sep 2022 15:37:38 +0000 (17:37 +0200)
committer	Amaury Denoyelle <adenoyelle@haproxy.com>
	Mon, 3 Oct 2022 14:25:17 +0000 (16:25 +0200)
commit	f3c40f83fbfc6fb60ba5608ccfbd00fb51e6f9b3
tree	4f72b509bce21d5f31f86803cce46b00a3a2fddf	tree \| snapshot
parent	a19bb6f0b2af1971775e4a88edfaed85d42162c6	commit \| diff

BUG/MINOR: quic: adjust quic_tls prototypes

Two prototypes in quic_tls module were not identical to the actual
function definition.

* quic_tls_decrypt2() : the second argument const attribute is not
  present, to be able to use it with EVP_CIPHER_CTX_ctlr(). As a
  consequence of this change, token field of quic_rx_packet is now
  declared as non-const.

* quic_tls_generate_retry_integrity_tag() : the second argument type
  differ between the two. Adjust this by fixing it to as unsigned char
  to match EVP_EncryptUpdate() SSL function.

This situation did not seem to have any visible effect. However, this is
clearly an undefined behavior and should be treated as a bug.

This should be backported up to 2.6.

include/haproxy/quic_tls.h		diff \| blob \| blame \| history
include/haproxy/xprt_quic-t.h		diff \| blob \| blame \| history
src/quic_tls.c		diff \| blob \| blame \| history
src/xprt_quic.c		diff \| blob \| blame \| history