]> git.ipfire.org Git - thirdparty/curl.git/commit
projects / thirdparty / curl.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 8616e5a) | patch
vtls: check final cfilter node in find_ssl_filter
authorJoshua Rogers <MegaManSec@users.noreply.github.com>
Fri, 24 Oct 2025 19:49:58 +0000 (03:49 +0800)
committerDaniel Stenberg <daniel@haxx.se>
Mon, 3 Nov 2025 17:21:57 +0000 (18:21 +0100)
commit0d5e24281dc7b49c396fda0d61126a05916fdda1
tree07c5a9708bea95b31dd587f82199425537d11e18tree | snapshot
parent8616e5aada9c78fb611c60d913c999c8e78c14bacommit | diff
vtls: check final cfilter node in find_ssl_filter

find_ssl_filter used while(cf && cf->next) and skipped the last node.
If the SSL filter was last, channel binding lookup failed and we returned
CURLE_BAD_FUNCTION_ARGUMENT. Switch to while(cf) so the tail is examined.

This bug was found with ZeroPath.

Closes #19229
lib/vtls/openssl.c diff | blob | blame | history
Mirror of https://github.com/curl/curl.git