Skip to content

Navigation Menu

Sign in
Appearance settings

Search code, repositories, users, issues, pull requests...

Provide feedback

We read every piece of feedback, and take your input very seriously.

Saved searches

Use saved searches to filter your results more quickly
Appearance settings

tls: copy the Buffer object before using (backport to v4.x) #9016

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
MylesBorins merged 1 commit into from
Oct 11, 2016
Merged

tls: copy the Buffer object before using (backport to v4.x) #9016

MylesBorins merged 1 commit into from
Oct 11, 2016

Conversation

@MylesBorins
Copy link
Contributor

@MylesBorins MylesBorins commented Oct 10, 2016

This is a backport of #8055

There was quite a bit of difference between this and the original so I would like to get sign off from @thefourtheye or @jasnell that this is doing what is should be doing.

@MylesBorins MylesBorins added tls Issues and PRs related to the tls subsystem. v4.x labels Oct 10, 2016
@nodejs-github-bot nodejs-github-bot added tls Issues and PRs related to the tls subsystem. v4.x labels Oct 10, 2016
thefourtheye
thefourtheye reviewed Oct 11, 2016
View reviewed changes
lib/tls.js Outdated
@@ -52,7 +52,7 @@ exports.convertNPNProtocols = function convertNPNProtocols(NPNProtocols, out) {

// If it's already a Buffer - store it
if (NPNProtocols instanceof Buffer) {
out.NPNProtocols = NPNProtocols;
out.NPNProtocols = new Buffer(NPNProtocols);
Copy link
Contributor

@thefourtheye thefourtheye Oct 11, 2016

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Why not Buffer.from, like in the original PR?

Copy link
Contributor Author

@MylesBorins MylesBorins Oct 11, 2016

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I was being consistent with the rest of the file, change incoming

@thefourtheye
tls: copy the Buffer object before using
2847490 
`convertNPNProtocols` and `convertALPNProtocols' uses the `protocols`
buffer object as it is, and if it is modified outside of core, it
might have an impact. This patch makes a copy of the buffer object,
before using it.

PR-URL: nodejs#8055
Reviewed-By: James M Snell <jasnell@gmail.com>
Reviewed-By: Ben Noordhuis <info@bnoordhuis.nl>
Reviewed-By: Franziska Hinkelmann <franziska.hinkelmann@gmail.com>
thefourtheye
thefourtheye approved these changes Oct 11, 2016
View reviewed changes
Copy link
Contributor

@thefourtheye thefourtheye left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM

jasnell
jasnell approved these changes Oct 11, 2016
View reviewed changes
Copy link
Member

@jasnell jasnell left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM

@MylesBorins MylesBorins merged commit 2847490 into nodejs:v4.x-staging Oct 11, 2016
@MylesBorins MylesBorins deleted the backport-8055 branch October 11, 2016 18:57
@aliscco aliscco mentioned this pull request Dec 1, 2023
Open
@leonardoadame leonardoadame mentioned this pull request Dec 3, 2023
Open
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@jasnell jasnell jasnell approved these changes

+1 more reviewer

@thefourtheye thefourtheye thefourtheye approved these changes

Reviewers whose approvals may not affect merge requirements

Assignees

No one assigned

Labels

tls Issues and PRs related to the tls subsystem.

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

4 participants

@MylesBorins @jasnell @thefourtheye @nodejs-github-bot
Morty Proxy This is a proxified and sanitized view of the page, visit original site.