BUG/MINOR: http: Missing calloc return value check in parse_http_req_capture A memory allocation failure happening in parse_http_req_capture while processing a "len" keyword and allocating a cap_hdr structure would have resulted in a crash. This function is only called during configuration parsing. It was raised in GitHub issue #1233. It could be backported to all stable branches.

commit: a4bf8a059dd9c783c00680aedcf055faa4b5d784 [log] [tgz]
author: Remi Tricot-Le Breton <rlebreton@haproxy.com> Wed May 12 17:54:17 2021 +0200
committer: Christopher Faulet <cfaulet@haproxy.com> Mon May 31 10:50:55 2021 +0200
tree: 3b1ed4a65a190dc1a519d39dbb54815b0d6e56f4
parent: 612b2c37be70636e73698c6c064af9522301be65 [diff]
diff --git a/src/http_act.c b/src/http_act.c
index f613624..0aa8a37 100644
--- a/src/http_act.c
+++ b/src/http_act.c

@@ -931,6 +931,11 @@
 		cur_arg++;
 
 		hdr = calloc(1, sizeof(*hdr));
+		if (!hdr) {
+			memprintf(err, "out of memory");
+			release_sample_expr(expr);
+			return ACT_RET_PRS_ERR;
+		}
 		hdr->next = px->req_cap;
 		hdr->name = NULL; /* not a header capture */
 		hdr->namelen = 0;
commit	a4bf8a059dd9c783c00680aedcf055faa4b5d784	[log] [tgz]
author	Remi Tricot-Le Breton <rlebreton@haproxy.com>	Wed May 12 17:54:17 2021 +0200
committer	Christopher Faulet <cfaulet@haproxy.com>	Mon May 31 10:50:55 2021 +0200
tree	3b1ed4a65a190dc1a519d39dbb54815b0d6e56f4
parent	612b2c37be70636e73698c6c064af9522301be65 [diff]