]> git.ipfire.org Git - thirdparty/apache/httpd.git/commit
projects / thirdparty / apache / httpd.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: d81067c) | patch
* mod_ssl: Fix renegotiation failures redirected to an ErrorDocument. PR 57334.
authorYann Ylavic <ylavic@apache.org>
Wed, 10 Dec 2014 18:06:55 +0000 (18:06 +0000)
committerYann Ylavic <ylavic@apache.org>
Wed, 10 Dec 2014 18:06:55 +0000 (18:06 +0000)
commitcc89edf4b303dbc2ee6caa00746d2a06bc456af7
tree6d7204d1933e16008a67fd4f88a812144580792dtree | snapshot
parentd81067c3f4d11c2c4eb8bb52bd721e78f8aee670commit | diff
* mod_ssl: Fix renegotiation failures redirected to an ErrorDocument. PR 57334.

When this occurs, the redirect (internal) request reaches ssl_hook_Access()
and make SSL_do_handshake crash probably because we force the renegotiation
based on an incomplete SSL state.

To avoid this, ssl_hook_Access() now returns FORBIDDEN immediatly if the given
SSL connection is not in a valid (handshaken) state.

git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1644498 13f79535-47bb-0310-9956-ffa450edef68
CHANGES diff | blob | blame | history
modules/ssl/ssl_engine_kernel.c diff | blob | blame | history
Mirror of https://github.com/apache/httpd.git