CVSROOT: /cvs
Module name: src
Changes by: r...@cvs.openbsd.org 2013/05/07 10:19:58
Modified files:
usr.sbin/relayd: relay_http.c
Log message:
- Add a simple check to prevent that the client-provided hex HTTP chunk size
turns our signed input variable into a negative number. This prevents that
a chunked HTTP connection could break its own state machine and turn into
a stalled state. The bug doesn't harm other connections or relayd itself.
- Use a 64bit variable to allow theoretical large chunks.
- Fix a comment.
ok tedu@
