git.kaiwu.me - nginx.git/commit

]> git.kaiwu.me - nginx.git/commit

author	Vladimir Homutov <vl@nginx.com>
	Thu, 19 Jan 2017 13:17:05 +0000 (16:17 +0300)
committer	Vladimir Homutov <vl@nginx.com>
	Thu, 19 Jan 2017 13:17:05 +0000 (16:17 +0300)
commit	0ccbe0abe4fc1313689576b21b8649e4ebe524ee
tree	d1fe1395d2ee0798d7eaa3e0e4ba317b3a44e427	tree \| snapshot
parent	b5a3cc3781e95068cd8d0d8c84a7d8296b6682e6	commit \| diff

Stream: fixed handling of non-ssl sessions.

A missing check could cause ngx_stream_ssl_handler() to be applied
to a non-ssl session, which resulted in a null pointer dereference
if ssl_verify_client is enabled.

The bug had appeared in 1.11.8 (41cb1b64561d).

src/stream/ngx_stream_ssl_module.c

diff | blob | history

nginx upstream

RSS Atom