Fijxu/nginx-quic
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity

OCSP stapling: fixed using wrong responder with multiple certs.

Browse source
This commit is contained in:
Maxim Dounin 2016-09-12 20:11:06 +03:00
parent 63c807fb88
commit 1bc825e2c8
1 changed files with 3 additions and 0 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

3
src/event/ngx_event_openssl_stapling.c
View file

@ -376,6 +376,7 @@ ngx_ssl_stapling_responder(ngx_conf_t *cf, ngx_ssl_t *ssl,
{ {
ngx_url_t u; ngx_url_t u;
char *s; char *s;
ngx_str_t rsp;
STACK_OF(OPENSSL_STRING) *aia; STACK_OF(OPENSSL_STRING) *aia;
if (responder->len == 0) { if (responder->len == 0) {
@ -403,6 +404,8 @@ ngx_ssl_stapling_responder(ngx_conf_t *cf, ngx_ssl_t *ssl,
return NGX_DECLINED; return NGX_DECLINED;
} }
responder = &rsp;
responder->len = ngx_strlen(s); responder->len = ngx_strlen(s);
responder->data = ngx_palloc(cf->pool, responder->len); responder->data = ngx_palloc(cf->pool, responder->len);
if (responder->data == NULL) { if (responder->data == NULL) {