BUG/MINOR: http: Missing calloc return value check while parsing tcp-request rule A memory allocation failure happening in tcp_parse_request_rule while processing the "capture" keyword and trying to allocate a cap_hdr structure would have resulted in a crash. This function is only called during configuration parsing. It was raised in GitHub issue #1233. It could be backported to all stable branches.

commit: 8cb033643ff3235ac0d3887167ce06fefeaf850b [log] [tgz]
author: Remi Tricot-Le Breton <rlebreton@haproxy.com> Mon May 17 10:08:16 2021 +0200
committer: Christopher Faulet <cfaulet@haproxy.com> Mon May 31 10:51:02 2021 +0200
tree: d0afe2f527bb4016b1ce6319cc0c92efaa363ed8
parent: 2ca42b4656f60655a5295a66f321239faee2d9fe [diff]
diff --git a/src/tcp_rules.c b/src/tcp_rules.c
index edc287b..bbd5820 100644
--- a/src/tcp_rules.c
+++ b/src/tcp_rules.c

@@ -826,6 +826,11 @@
 		}
 
 		hdr = calloc(1, sizeof(*hdr));
+		if (!hdr) {
+			memprintf(err, "parsing [%s:%d] : out of memory", file, line);
+			release_sample_expr(expr);
+			return -1;
+		}
 		hdr->next = curpx->req_cap;
 		hdr->name = NULL; /* not a header capture */
 		hdr->namelen = 0;
commit	8cb033643ff3235ac0d3887167ce06fefeaf850b	[log] [tgz]
author	Remi Tricot-Le Breton <rlebreton@haproxy.com>	Mon May 17 10:08:16 2021 +0200
committer	Christopher Faulet <cfaulet@haproxy.com>	Mon May 31 10:51:02 2021 +0200
tree	d0afe2f527bb4016b1ce6319cc0c92efaa363ed8
parent	2ca42b4656f60655a5295a66f321239faee2d9fe [diff]