projects
/
haproxy-2.5.git
/ commitdiff
commit
grep
author
committer
pickaxe
?
search:
re
summary
|
shortlog
|
log
|
commit
| commitdiff |
tree
raw
|
patch
| inline |
side by side
(parent:
eb155b6
)
BUG/MEDIUM: ssl: loading dh param from certifile causes unpredictable error.
author
Emeric Brun
<ebrun@haproxy.com>
Thu, 16 Aug 2018 13:14:12 +0000
(15:14 +0200)
committer
Willy Tarreau
<w@1wt.eu>
Thu, 16 Aug 2018 17:36:08 +0000
(19:36 +0200)
If the dh parameter is not found, the openssl's error global
stack was not correctly cleared causing unpredictable error
during the following parsing (chain cert parsing for instance).
This patch should be backported in 1.8 (and perhaps 1.7)
src/ssl_sock.c
patch
|
blob
|
history
diff --git
a/src/ssl_sock.c
b/src/ssl_sock.c
index
a0bea59
..
813b599
100644
(file)
--- a/
src/ssl_sock.c
+++ b/
src/ssl_sock.c
@@
-2607,6
+2607,8
@@
end:
if (in)
BIO_free(in);
+ ERR_clear_error();
+
return dh;
}
projects / haproxy-2.5.git / commitdiff