-
Notifications
You must be signed in to change notification settings - Fork 103
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
fix #1147 : init frag variable before use. #1149
Conversation
However, linux asymmetric and elliptic crypto seems incomplete, so I leave the old RSA and ECDH for now. Also note that generally speaking cipher.[ch] and md.[ch] wrappers are for elimination in future - now they just link bunch of mbedTLS code w/ linux/crypto.
…d even TCP segment; Multiple handshakes FSM fixes.
Fix #1033: Change header name format in HTTP tables configuration.
Fix #772: Change 'keepalive' and 'client_body' timeouts applying.
The page is used later as skb page fragment in TLS handshake. 2. Cleanups in PEM decoder. 3. Remove DHM routines called only for FS IO (unused). 4. Revert DTLS routines (dirty code) as it's supposed to used them for QUIC.
Fix #900: Change some comments and add unit tests.
2. Make GFSM traverse skb list and call a FSM for each skb. TLS layer must collect skbs before decryption to have AEAD tag, so it sends list of decrypted skbs to HTTP layer by GFSM call. However, HTTP manages skb list on it's own. 3. Make ttls_decrypt() to work with plain buffers as well as fragmented skbs; 4. Some cleanups.
SIMD crypto algorithms won't be called through cryptd. Some cleanups.
tfw_gfsm_switch() can be called multiple times during tfw_gfsm_move() call. After each tfw_gfsm_switch() call current FSM is switched to FSM stated in fsm_hooks. Thus FSM(st) actually points on child FSM state, not parent one.
… unsigned variables, some code mess.
Fix review comments for #1037
Fix build of TLS module
Various backup file copies were accidentally added to the repo.
remove rebase artifacts
Sanitize Content-Type for multipart/form-data requests
* req->vhost is expected to be non-NULL, as it was checked before; * disallow multiple instances of http_post_validate at topmost level; * a typo.
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Good catch and the bug may introduce very nasty crashes and stranges in behaviour, so please merge it ASAP.
Generally agree with @i-rinat on comments except that @frag is checked from NULL at the begin of TFW_STR_FOR_EACH_CHUNK()
loop, so it's still needed to initialize frag before first entry to the loop. Also frag
assignment in the else
branch is required for the check after jumping to this_chunk
.
That check looks like a remainder from the older code. The current version tests whenever |
follow-up changes (see #1139)
Replace void ptr by union
The function receives TfwMsgIter as argumrnt (as the arguments actually), The 'skb' and 'f' point to specific fragment of the skb. If the condition is false, then TfwMsgIter->skb and TfwMsgIter->frag may point to unexisting skb fragment.
2121aa5
to
f174be8
Compare
f174be8
to
02621ec
Compare
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Looks good to me.
02621ec
to
1b136bb
Compare
No description provided.