| commit | 93eb94d622093829da4bd4c3e0af16b360e912e4 | [log] [tgz] |
|---|---|---|
| author | Maxim Dounin <mdounin@mdounin.ru> | Fri Apr 18 20:13:24 2014 +0400 |
| committer | Maxim Dounin <mdounin@mdounin.ru> | Fri Apr 18 20:13:24 2014 +0400 |
| tree | 1b2edc57acda69d0dfc8f3322a18a1584435ceb9 | |
| parent | 6c9c973aa77b68a9adb1d0814ef5920aaf0ef157 [diff] |
Upstream: plugged potential memory leak on reload. The SSL_CTX_set_cipher_list() may fail if there are no valid ciphers specified in proxy_ssl_ciphers / uwsgi_ssl_ciphers, resulting in SSL context leak. In theory, ngx_pool_cleanup_add() may fail too, but this case is intentionally left out for now as it's almost impossible and proper fix will require changes to http ssl and mail ssl code as well.