44d2208ac0
Changes with mod_ssl 2.8.14 (18-Mar-2002 to 21-Mar-2003) *) Fixed logic in the destruction of a temporary certificate structure and this way avoid a crash due to freeing NULL object. *) Removed one newly introduced X509_free() call in the context of SSL_get_certificate(), because this function does not increment a reference count (although SSL_get_peer_certificate() does). *) Fixed hash-table based shared memory session cache (shmht) implementation by making sure that the underlying hash table library does not crash if memory cannot be allocated. Changes with mod_ssl 2.8.13 (23-Oct-2002 to 18-Mar-2003) *) Always enforce RSA blinding on RSA private keys in order to be resistent to timing attacks. *) Added timeout also to the "pre-sucking" of the trailing data in POST request handling. *) Correctly shutdown shared memory pools on fork+exec situations. *) Bugfix SSL client certificate verification: OpenSSL was not informed with SSL_set_verify_result(ssl, X509_V_OK) in case mod_ssl forced the verification to be ok. *) Consistently use OPENSSL_free() instead of plain free() to deallocate memory chunks allocated inside OpenSSL. *) Fixed various memory leaks related to X509 certificates. New patch-ac sent to maintainer.
13 lines
297 B
Text
13 lines
297 B
Text
$NetBSD: patch-ac,v 1.1 2003/04/10 08:36:42 wiz Exp $
|
|
|
|
--- pkg.sslmod/ssl_util_ssl.h.orig Thu Oct 24 09:08:11 2002
|
|
+++ pkg.sslmod/ssl_util_ssl.h
|
|
@@ -86,7 +86,7 @@
|
|
/*
|
|
* Backward compatibility.
|
|
*/
|
|
-#if SSL_LIBRARY_VERSION < 0x00906100
|
|
+#ifndef OPENSSL_free
|
|
#define OPENSSL_free free
|
|
#endif
|
|
|