mod_ssl: Don't lose track of the SSL context if the ssl_run_pre_handshake()
hook returns an error.
Submitted by: minfrin
Reviewed by: minfrin, jim, ylavic
Backported by: ylavic
git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/branches/2.4.x@
1734396 13f79535-47bb-0310-9956-
ffa450edef68
Changes with Apache 2.4.19
+ *) mod_ssl: Don't lose track of the SSL context if the ssl_run_pre_handshake()
+ hook returns an error. [Graham Leggett]
+
*) mod_rewrite: Add QSL|qslast flag to allow rewrites to files with
literal question marks in their names. PR 58777. [Eric Covener]
PATCHES ACCEPTED TO BACKPORT FROM TRUNK:
[ start all new proposals below, under PATCHES PROPOSED. ]
- *) mod_ssl: Don't lose track of the SSL context if the ssl_run_pre_handshake()
- hook returns an error.
- trunk patch: http://svn.apache.org/r1734006
- 2.4.x patch: trunk patch works (modulo CHANGES)
- +1: minfrin, jim, ylavic
-
*) mod_rewrite: bug in recently backported r1734125.
trunk patch: http://svn.apache.org/r1734294.
2.4.x patch: trunk works
* attach this to the socket. Additionally we register this attachment
* so we can detach later.
*/
- if (!(ssl = SSL_new(mctx->ssl_ctx))) {
+ if (!(sslconn->ssl = ssl = SSL_new(mctx->ssl_ctx))) {
ap_log_cerror(APLOG_MARK, APLOG_ERR, 0, c, APLOGNO(01962)
"Unable to create a new SSL connection from the SSL "
"context");
SSL_set_app_data(ssl, c);
modssl_set_app_data2(ssl, NULL); /* will be request_rec */
- sslconn->ssl = ssl;
-
SSL_set_verify_result(ssl, X509_V_OK);
ssl_io_filter_init(c, r, ssl);
projects / apache / commitdiff