Repositories - haproxy-3.0.git/commit

author	Amaury Denoyelle <adenoyelle@haproxy.com>
	Thu, 1 Aug 2024 16:20:08 +0000 (18:20 +0200)
committer	Christopher Faulet <cfaulet@haproxy.com>
	Tue, 3 Sep 2024 16:49:07 +0000 (18:49 +0200)
commit	b8523ffaf8c34a29e38120051355115564667c46
tree	11570492a67a4078e0a4ef2362a7a3c354ef5291	tree \| snapshot
parent	317e918193b5e133043d82cca29a682f74f9a032	commit \| diff

BUG/MINOR: h3: properly reject too long header responses

When encoding HTX to HTTP/3 headers on the response path, a bunch of
ABORT_NOW() where used when buffer room was not enough. In most cases
this is safe as output buffer has just been allocated and so is empty at
the start of the function. However, with a header list longer than a
whole buffer, this would cause an unexpected crash.

Fix this by removing ABORT_NOW() statement with proper error return
path. For the moment, this would cause the whole connection to be close
rather than the stream only. This may be further improved in the future.

Also remove ABORT_NOW() when encoding frame length at the end of headers
or trailers encoding. Buffer room is sufficient as it was already
checked prior in the same function.

This should be backported up to 2.6. Special care should be handled
however as this code path has changed frequently :
* for 2.9 and older, the extra following statement must be inserted
  prior each newly added goto statement :
  h3c->err = H3_INTERNAL_ERROR;
* for 2.6, trailers support is not implemented. As such, related chunks
  should just be ignored when backporting.

(cherry picked from commit 48514c118ce881e2ae20aeb1edda929663a8397d)
Signed-off-by: Christopher Faulet <cfaulet@haproxy.com>