]> git.kaiwu.me - nginx.git/commit
Script: buffer overrun protection in direct script usage.
authorMaxim Dounin <mdounin@mdounin.ru>
Fri, 19 Jun 2026 19:54:46 +0000 (22:54 +0300)
committerRoman Arutyunyan <arutyunyan.roman@gmail.com>
Wed, 15 Jul 2026 17:20:38 +0000 (21:20 +0400)
commit326b17b0038321c29252e79bf4c53d4773fcb8b5
tree89559b4efb8290855bf52d4ba6f800af4ed5cd7e
parent78950bdcd443830bde00f6844dba3033c18862b1
Script: buffer overrun protection in direct script usage.

Following the previous change, this change adds script overrun
protection to direct script evaluation in the proxy, fastcgi, scgi,
uwsgi, grpc proxy, index, and try_files modules.

This change is a modified version of a patch by Maxim Dounin.  The
modifications include ngx_http_proxy_v2_module and hardened size checks.

Signed-off-by: Roman Arutyunyan <arut@nginx.com>
Origin: <https://freenginx.org/hg/nginx/rev/7e4d7feb4c77>
src/http/modules/ngx_http_fastcgi_module.c
src/http/modules/ngx_http_grpc_module.c
src/http/modules/ngx_http_index_module.c
src/http/modules/ngx_http_proxy_module.c
src/http/modules/ngx_http_proxy_v2_module.c
src/http/modules/ngx_http_scgi_module.c
src/http/modules/ngx_http_try_files_module.c
src/http/modules/ngx_http_uwsgi_module.c