BUG/MEDIUM: quic: fix crash on CC if mux not present If a CONNECTION_CLOSE is received during handshake or after mux release, a segfault happens due to invalid dereferencement of qc->qcc. Check mux_state first to prevent this.

commit: 4af6595d41f99dd9fdbe33ce52350a557f22dc34 [log] [tgz]
author: Amaury Denoyelle <adenoyelle@haproxy.com> Tue Feb 15 11:06:15 2022 +0100
committer: Amaury Denoyelle <adenoyelle@haproxy.com> Tue Feb 15 11:08:17 2022 +0100
tree: cdee7b5da8ea4ee007a2c2b83055d7fd15a56b0f
parent: 8524f0f779858cf53ee621635e28edfbcae7c0ba [diff]
diff --git a/src/xprt_quic.c b/src/xprt_quic.c
index bff1780..b71e427 100644
--- a/src/xprt_quic.c
+++ b/src/xprt_quic.c

@@ -2448,7 +2448,8 @@
 		case QUIC_FT_CONNECTION_CLOSE:
 		case QUIC_FT_CONNECTION_CLOSE_APP:
 			/* warn the mux to close the connection */
-			qc->qcc->flags |= QC_CF_CC_RECV;
+			if (qc->mux_state == QC_MUX_READY)
+				qc->qcc->flags |= QC_CF_CC_RECV;
 			tasklet_wakeup(qc->qcc->wait_event.tasklet);
 			break;
 		case QUIC_FT_HANDSHAKE_DONE:
commit	4af6595d41f99dd9fdbe33ce52350a557f22dc34	[log] [tgz]
author	Amaury Denoyelle <adenoyelle@haproxy.com>	Tue Feb 15 11:06:15 2022 +0100
committer	Amaury Denoyelle <adenoyelle@haproxy.com>	Tue Feb 15 11:08:17 2022 +0100
tree	cdee7b5da8ea4ee007a2c2b83055d7fd15a56b0f
parent	8524f0f779858cf53ee621635e28edfbcae7c0ba [diff]