BUG/MINOR: quic: NULL pointer dereferences when building post handshake frames. The second one was detected by cppcheck contrary to the first one. Fixes issue #1032. Thank you to Ilya for having reported this.

commit: 153d4a89d0451ae896c9922ce2490b4ab8ddc8bf [log] [tgz]
author: Frédéric Lécaille <flecaille@haproxy.com> Wed Jan 06 12:12:39 2021 +0100
committer: Willy Tarreau <w@1wt.eu> Wed Jan 06 13:59:05 2021 +0100
tree: 7bb1fe53d41fc94cf960134f3ab7a2d0303131c2
parent: de79cd28ec9e1facc5f2da02cd95dda82ac6fe58 [diff]
diff --git a/src/xprt_quic.c b/src/xprt_quic.c
index c20d877..7232c65 100644
--- a/src/xprt_quic.c
+++ b/src/xprt_quic.c

@@ -1871,6 +1871,9 @@
 	/* Only servers must send a HANDSHAKE_DONE frame. */
 	if (!objt_server(conn->conn->target)) {
 		frm = pool_alloc(pool_head_quic_frame);
+		if (!frm)
+			return 0;
+
 		frm->type = QUIC_FT_HANDSHAKE_DONE;
 		LIST_ADDQ(&conn->tx.frms_to_send, &frm->list);
 	}
@@ -1879,7 +1882,6 @@
 		struct quic_connection_id *cid;
 
 		frm = pool_alloc(pool_head_quic_frame);
-		memset(frm, 0, sizeof *frm);
 		cid = new_quic_cid(&conn->cids, i);
 		if (!frm || !cid)
 			goto err;
commit	153d4a89d0451ae896c9922ce2490b4ab8ddc8bf	[log] [tgz]
author	Frédéric Lécaille <flecaille@haproxy.com>	Wed Jan 06 12:12:39 2021 +0100
committer	Willy Tarreau <w@1wt.eu>	Wed Jan 06 13:59:05 2021 +0100
tree	7bb1fe53d41fc94cf960134f3ab7a2d0303131c2
parent	de79cd28ec9e1facc5f2da02cd95dda82ac6fe58 [diff]