Prevent a core dump (openssl_state_machine.c is completely infected with

assert()s in place of sensible error handling) when a server-root-relative
certificate path is given (which is what most users are going to try first).
  assertion "n > 0" failed: file "openssl_state_machine.c", line 142
That does NOT fix the openssl_state_machine.c though., So, never try to
use invalid certs, missing keys or other fancy "1st time user" stuff.

git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@88950 13f79535-47bb-0310-9956-ffa450edef68

diff --git a/modules/tls/mod_tls.c b/modules/tls/mod_tls.c
index 2e9f47505037b5edd26cefa7c0def5b60dd075c0..aa764833dfe70aff3b3a515affbaa5e859cb379d 100644 (file)
--- a/modules/tls/mod_tls.c
+++ b/modules/tls/mod_tls.c
@@ -109,7 +109,7 @@ static const char *tls_cert_file(cmd_parms *cmd, void *dummy, const char *arg)
 {
     TLSServerConfig *pConfig = ap_get_module_config(cmd->server->module_config,
                                                    &tls_module);
-    pConfig->szCertificateFile = arg;
+    pConfig->szCertificateFile = ap_server_root_relative(cmd->pool, arg);
 
     /* temp */
     pConfig->szKeyFile=pConfig->szCertificateFile;