[nginx] OCSP stapling: fixed using wrong responder with multiple certs.
Maxim Dounin
mdounin at mdounin.ru
Mon Sep 12 17:52:56 UTC 2016
details: http://hg.nginx.org/nginx/rev/6acbe9964ceb
branches:
changeset: 6688:6acbe9964ceb
user: Maxim Dounin <mdounin at mdounin.ru>
date: Mon Sep 12 20:11:06 2016 +0300
description:
OCSP stapling: fixed using wrong responder with multiple certs.
diffstat:
src/event/ngx_event_openssl_stapling.c | 3 +++
1 files changed, 3 insertions(+), 0 deletions(-)
diffs (20 lines):
diff --git a/src/event/ngx_event_openssl_stapling.c b/src/event/ngx_event_openssl_stapling.c
--- a/src/event/ngx_event_openssl_stapling.c
+++ b/src/event/ngx_event_openssl_stapling.c
@@ -376,6 +376,7 @@ ngx_ssl_stapling_responder(ngx_conf_t *c
{
ngx_url_t u;
char *s;
+ ngx_str_t rsp;
STACK_OF(OPENSSL_STRING) *aia;
if (responder->len == 0) {
@@ -403,6 +404,8 @@ ngx_ssl_stapling_responder(ngx_conf_t *c
return NGX_DECLINED;
}
+ responder = &rsp;
+
responder->len = ngx_strlen(s);
responder->data = ngx_palloc(cf->pool, responder->len);
if (responder->data == NULL) {
More information about the nginx-devel
mailing list