BUG/MINOR: connection: avoid null pointer dereference in send-proxy-v2

author Ilya Shipitsin <chipitsine@gmail.com>

Fri, 14 Sep 2018 19:50:05 +0000 (00:50 +0500)

committer Willy Tarreau <w@1wt.eu>

Tue, 2 Oct 2018 02:07:43 +0000 (04:07 +0200)
author Ilya Shipitsin <chipitsine@gmail.com>
Fri, 14 Sep 2018 19:50:05 +0000 (00:50 +0500)
committer Willy Tarreau <w@1wt.eu>
Tue, 2 Oct 2018 02:07:43 +0000 (04:07 +0200)
diff --git a/src/connection.c b/src/connection.c

index 06e1ed840da90437aef2bd1c5b42ddfaafb90b48..c0da874bd48c926e361a26df630fc0362c76ad29 100644 (file)
--- a/src/connection.c
+++ b/src/connection.c
@@ -996,6 +996,7 @@ int conn_recv_netscaler_cip(struct connection *conn, int flag)
         return 0;
  }
  
+/* Note: <remote> is explicitly allowed to be NULL */
  int make_proxy_line(char *buf, int buf_len, struct server *srv, struct connection *remote)
  {
         int ret = 0;
@@ -1107,6 +1108,7 @@ static int make_tlv(char *dest, int dest_len, char type, uint16_t length, const
         return length + sizeof(*tlv);
  }
  
+/* Note: <remote> is explicitly allowed to be NULL */
  int make_proxy_line_v2(char *buf, int buf_len, struct server *srv, struct connection *remote)
  {
         const char pp2_signature[] = PP2_SIGNATURE;
@@ -1191,7 +1193,7 @@ int make_proxy_line_v2(char *buf, int buf_len, struct server *srv, struct connec
                 ret += make_tlv(&buf[ret], (buf_len - ret), PP2_TYPE_CRC32C, sizeof(zero_crc32c), (const char *)&zero_crc32c);
         }
  
-       if (conn_get_alpn(remote, &value, &value_len)) {
+       if (remote && conn_get_alpn(remote, &value, &value_len)) {
                 if ((buf_len - ret) < sizeof(struct tlv))
                         return 0;
                 ret += make_tlv(&buf[ret], (buf_len - ret), PP2_TYPE_ALPN, value_len, value);
author	Ilya Shipitsin <chipitsine@gmail.com>
	Fri, 14 Sep 2018 19:50:05 +0000 (00:50 +0500)
committer	Willy Tarreau <w@1wt.eu>
	Tue, 2 Oct 2018 02:07:43 +0000 (04:07 +0200)