Full_Name: Alex Kiernan
Version: 2.8.5-1.3.22
OS: Solaris
Submission from: (NULL) (194.217.90.3)
Due to an unrelated problem, I had SSL_CTX_new failing, and returning NULL,
causing mod_ssl to core, the attached patch avoids the core dump and provides
diagnostics.
Index: ssl_engine_init.c
===================================================================
RCS file: /cvsroot/upstream/mod_ssl/pkg.sslmod/ssl_engine_init.c,v
retrieving revision 1.1.1.6
diff -c -r1.1.1.6 ssl_engine_init.c
*** ssl_engine_init.c�2001/11/26 11:19:02�1.1.1.6
--- ssl_engine_init.c�2001/12/12 08:45:29
***************
*** 530,535 ****
--- 530,541 ----
ctx = SSL_CTX_new(SSLv2_server_method()); /* only SSLv2 is left */
else
ctx = SSL_CTX_new(SSLv23_server_method()); /* be more flexible */
+ if (ctx == NULL) {
+ �ssl_log(s, SSL_LOG_ERROR|SSL_ADD_SSLERR,
+ ��"Init: (%s) Unable to create SSL context",
+ ��cpVHostID);
+ �ssl_die();
+ }
SSL_CTX_set_options(ctx, SSL_OP_ALL);
if (!(sc->nProtocol & SSL_PROTOCOL_SSLV2))
SSL_CTX_set_options(ctx, SSL_OP_NO_SSLv2);
______________________________________________________________________
Apache Interface to OpenSSL (mod_ssl) www.modssl.org
User Support Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
