]> git.ipfire.org Git - thirdparty/haproxy.git/commit
projects / thirdparty / haproxy.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 0dbf038) | patch
BUG/MINOR: ssl: handle X509_get_default_cert_dir() returning NULL
authorWilliam Lallemand <wlallemand@haproxy.org>
Tue, 5 Apr 2022 08:19:30 +0000 (10:19 +0200)
committerWilliam Lallemand <wlallemand@haproxy.org>
Tue, 5 Apr 2022 08:19:30 +0000 (10:19 +0200)
commit80296b4bd502764d00699f0ffe5f65658ffb7142
treed93532047e572cedfff20ed123994426e2fc903dtree | snapshot
parent0dbf03871f5c3acb7b72bba05060c401889018c3commit | diff
BUG/MINOR: ssl: handle X509_get_default_cert_dir() returning NULL

ssl_store_load_locations_file() is using X509_get_default_cert_dir()
when using '@system-ca' as a parameter.

This function could return a NULL if OpenSSL was built with a
X509_CERT_DIR set to NULL, this is uncommon but let's fix this.

No backport needed, 2.6 only.

Fix issue #1637.
src/ssl_ckch.c diff | blob | blame | history
Mirror of https://github.com/haproxy/haproxy.git