Google Git
Sign in
nginx/nginx/0d7a7e91cf57981e89dafb44794dcb9563e8a3fa^!/.
commit
0d7a7e91cf57981e89dafb44794dcb9563e8a3fa
[log] [tgz]
author
Maxim Dounin <mdounin@mdounin.ru>
Fri Oct 05 11:09:14 2012 +0000
committer
Maxim Dounin <mdounin@mdounin.ru>
Fri Oct 05 11:09:14 2012 +0000
tree
4f9c2235a1f695d19b3b583fee34b4d43a6546db
parent
82989420adcf0cb4e0f00e5f689cb59554e4c24c [diff]
OCSP stapling: properly check if there is ssl.ctx.

This fixes segfault if stapling was enabled in a server without a certificate
configured (and hence no ssl.ctx).

diff --git a/src/http/modules/ngx_http_ssl_module.c b/src/http/modules/ngx_http_ssl_module.c
index 284edd0..6288283 100644
--- a/src/http/modules/ngx_http_ssl_module.c
+++ b/src/http/modules/ngx_http_ssl_module.c

@@ -737,7 +737,7 @@
 
         sscf = cscfp[s]->ctx->srv_conf[ngx_http_ssl_module.ctx_index];
 
-        if (!sscf->stapling) {
+        if (sscf->ssl.ctx == NULL || !sscf->stapling) {
             continue;
         }