Skip to content

N
nghttp2
Commit 5d354418 authored by Tatsuhiro Tsujikawa's avatar Tatsuhiro Tsujikawa
Browse files
Options

nghttpx: Fix crash in SSL_CTX_set_tlsext_ticket_key_cb 

It seems that returning 0 when enc == 0 crashes OpenSSL.
parent 5dce9501
Hide whitespace changes
Inline Side-by-side
Showing with 3 additions and 4 deletions
src/shrpx.cc
View file @ 5d354418
......@@ -465,7 +465,6 @@ void renew_ticket_key_cb(struct ev_loop *loop, ev_timer *w, int revents) {
if (LOG_ENABLED(INFO)) {
LOG(INFO) << "failed to renew ticket key";
}
mod_config()->ticket_keys.reset();
return;
}
......
src/shrpx_ssl.cc
View file @ 5d354418
......@@ -160,8 +160,8 @@ int ticket_key_cb(SSL *ssl, unsigned char *key_name, unsigned char *iv,
#endif // NOTHREADS
if (!ticket_keys) {
/* No ticket keys available. Perform full handshake */
return 0;
// No ticket keys available.
return -1;
}
auto &keys = ticket_keys->keys;
......@@ -172,7 +172,7 @@ int ticket_key_cb(SSL *ssl, unsigned char *key_name, unsigned char *iv,
if (LOG_ENABLED(INFO)) {
CLOG(INFO, handler) << "session ticket key: RAND_bytes failed";
}
return 0;
return -1;
}
auto &key = keys[0];
......
Markdown is supported
0% or
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment