]> git.ipfire.org Git - thirdparty/squid.git/commit
projects / thirdparty / squid.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 8db6705) | patch
Bug 3816: SSL_get_certificate call inside Ssl::verifySslCertificate crashes
authorChristos Tsantilas <chtsanti@users.sourceforge.net>
Wed, 24 Apr 2013 15:46:24 +0000 (09:46 -0600)
committerAmos Jeffries <squid3@treenet.co.nz>
Wed, 24 Apr 2013 15:46:24 +0000 (09:46 -0600)
commitd2da01d7f65edff4e1e50c6d3b7d93c57890e3fb
treefff9455244fe920b7325363a68f832273ac3e1e6tree
parent8db6705658a82976ee4084d77146dadf7c2169dfcommit | diff
Bug 3816: SSL_get_certificate call inside Ssl::verifySslCertificate crashes

The SSL_get_certificate implementation in OpenSSL 1.0.1d and 1.0.1e releases,
will crash if called before the certificate sent to the client.
This patch add a hack when one of the problematic OpenSSL versions used to
retrieve the certificate directly from SSL_CTX object, instead of creating
a temporary SSL object, and call SSL_get_certificate.
src/ssl/support.cc diff | blob | blame | history
Mirror of https://github.com/squid-cache/squid.git