BUG/MEDIUM: ssl: subsequent handshakes fail after server configuration changes

author Emeric Brun <ebrun@exceliance.fr>

Thu, 4 Oct 2012 15:09:56 +0000 (17:09 +0200)

committer Willy Tarreau <w@1wt.eu>

Fri, 5 Oct 2012 19:46:52 +0000 (21:46 +0200)
author Emeric Brun <ebrun@exceliance.fr>
Thu, 4 Oct 2012 15:09:56 +0000 (17:09 +0200)
committer Willy Tarreau <w@1wt.eu>
Fri, 5 Oct 2012 19:46:52 +0000 (21:46 +0200)
diff --git a/src/ssl_sock.c b/src/ssl_sock.c

index 88a5adb7d9c5554ad41602ab5084227fca1ed3ea..9f611986556111eca6724b046bab4c167f559316 100644 (file)
--- a/src/ssl_sock.c
+++ b/src/ssl_sock.c
@@ -747,6 +747,12 @@ int ssl_sock_handshake(struct connection *conn, unsigned int flag)
         return 1;
  
   out_error:
+       /* free resumed session if exists */
+       if (target_srv(&conn->target) && target_srv(&conn->target)->ssl_ctx.reused_sess) {
+               SSL_SESSION_free(target_srv(&conn->target)->ssl_ctx.reused_sess);
+               target_srv(&conn->target)->ssl_ctx.reused_sess = NULL;
+       }
+
         /* Fail on all other handshake errors */
         conn->flags |= CO_FL_ERROR;
         conn->flags &= ~flag;
author	Emeric Brun <ebrun@exceliance.fr>
	Thu, 4 Oct 2012 15:09:56 +0000 (17:09 +0200)
committer	Willy Tarreau <w@1wt.eu>
	Fri, 5 Oct 2012 19:46:52 +0000 (21:46 +0200)