nginx: src/stream/ngx_stream_ssl

comparison src/stream/ngx_stream_ssl_module.c @ 7193:9d14931cec8c

SSL: using default server context in session remove (closes #1464). This fixes segfault in configurations with multiple virtual servers sharing the same port, where a non-default virtual server block misses certificate.

author	Sergey Kandaurov <pluknet@nginx.com>
date	Tue, 30 Jan 2018 17:46:31 +0300
parents	82f0b8dcca27
children	7f955d3b9a0d

comparison

equal deleted inserted replaced

-:d5a535774861
+:9d14931cec8c
 {
 ngx_log_error(NGX_LOG_INFO, c->log, 0,
 "client SSL certificate verify error: (%l:%s)",
 rc, X509_verify_cert_error_string(rc));
-ngx_ssl_remove_cached_session(sslcf->ssl.ctx,
+ngx_ssl_remove_cached_session(c->ssl->session_ctx,
 (SSL_get0_session(c->ssl->connection)));
 return NGX_ERROR;
 }
 if (sslcf->verify == 1) {
 if (cert == NULL) {
 ngx_log_error(NGX_LOG_INFO, c->log, 0,
 "client sent no required SSL certificate");
-ngx_ssl_remove_cached_session(sslcf->ssl.ctx,
+ngx_ssl_remove_cached_session(c->ssl->session_ctx,
 (SSL_get0_session(c->ssl->connection)));
 return NGX_ERROR;
 }
 X509_free(cert);

Mercurial > hg > nginx

comparison src/stream/ngx_stream_ssl_module.c @ 7193:9d14931cec8c