mirror/nginx
1
0
Fork 0
mirror of https://github.com/nginx/nginx.git synced 2024-12-02 20:09:01 +08:00
Code Issues Actions Packages Projects Releases Wiki Activity
The official NGINX Open Source repository.
4,818 Commits 21 Branches 568 Tags 86 MiB
C 97.6%
Vim Script 1.8%
XS 0.4%
Perl 0.1%
0c05e5b55f
Go to file
Valentin Bartenev 0c05e5b55f SPDY: fixed potential integer overflow while parsing headers. 
Previously r->header_size was used to store length for a part of
value that represents an individual already parsed HTTP header,
while r->header_end pointed to the end of the whole value.

Instead of storing length of a following name or value as pointer
to a potential end address (r->header_name_end and r->header_end)
that might be overflowed, now r->lowercase_index counter is used
to store remaining length of a following unparsed field.

It also fixes incorrect $body_bytes_sent value if a request is
closed while parsing of the request header.  Since r->header_size
is intended for counting header size, thus abusing it for header
parsing purpose was certainly a bad idea.
2014-03-03 19:24:55 +04:00
auto Win32: MSVC 2013 compatibility. 2014-02-13 16:54:00 +04:00
conf MIME: added application/json MIME type. 2013-09-18 12:59:47 -07:00
contrib Contrib: added vim to README. 2013-12-06 19:58:27 +04:00
docs Docs: xslt regenerated. 2014-02-28 20:17:01 +04:00
misc Updated PCRE used for win32 builds. 2014-02-04 07:45:33 +04:00
src SPDY: fixed potential integer overflow while parsing headers. 2014-03-03 19:24:55 +04:00
.hgtags release-1.5.10 tag 2014-02-04 16:26:46 +04:00