Skip to content

Fix a panic triggered by malformed encrypted message #28

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Merged
merged 1 commit into from
Jul 14, 2023

Conversation

cjpatton
Copy link
Contributor

If the encrypted message field is too short to include the encapsulated key, then decrypt_query() will panic. Instead it should return an error since this condition is triggered by the sender.

If the encrypted message field is too short to include the encapsulated
key, then `decrypt_query()` will panic. Instead it should return an
error since this condition is triggered by the sender.
@xofyarg
Copy link
Contributor

xofyarg commented Jul 14, 2023

Thank you for the report and fix indeed!

@xofyarg xofyarg merged commit c1bc4ed into cloudflare:master Jul 14, 2023
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
None yet
Projects
None yet
Development

Successfully merging this pull request may close these issues.

2 participants