You can not select more than 25 topics
Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
36 lines
1006 B
36 lines
1006 B
6 years ago
|
--- a/modules/ssl/ssl_util_stapling.c 2014/05/07 12:51:38 1593001
|
||
|
|
+++ b/modules/ssl/ssl_util_stapling.c 2014/05/07 12:52:13 1593002
|
||
|
|
@@ -145,14 +145,15 @@
|
||
|
|
X509_digest(x, EVP_sha1(), cinf->idx, NULL);
|
||
|
|
|
||
|
|
aia = X509_get1_ocsp(x);
|
||
|
|
- if (aia)
|
||
|
|
+ if (aia) {
|
||
|
|
cinf->uri = sk_OPENSSL_STRING_pop(aia);
|
||
|
|
+ X509_email_free(aia);
|
||
|
|
+ }
|
||
|
|
if (!cinf->uri && !mctx->stapling_force_url) {
|
||
|
|
ap_log_error(APLOG_MARK, APLOG_ERR, 0, s, APLOGNO(02218)
|
||
|
|
"ssl_stapling_init_cert: no responder URL");
|
||
|
|
+ return 0;
|
||
|
|
}
|
||
|
|
- if (aia)
|
||
|
|
- X509_email_free(aia);
|
||
|
|
return 1;
|
||
|
|
}
|
||
|
|
|
||
|
|
@@ -403,6 +404,13 @@
|
||
|
|
else
|
||
|
|
ocspuri = cinf->uri;
|
||
|
|
|
||
|
|
+ if (!ocspuri) {
|
||
|
|
+ ap_log_error(APLOG_MARK, APLOG_ERR, 0, s, APLOGNO(02621)
|
||
|
|
+ "stapling_renew_response: no uri for responder");
|
||
|
|
+ rv = FALSE;
|
||
|
|
+ goto done;
|
||
|
|
+ }
|
||
|
|
+
|
||
|
|
/* Create a temporary pool to constrain memory use */
|
||
|
|
apr_pool_create(&vpool, conn->pool);
|
||
|
|
|