[rt-commit] r193 - in /redwax-tool/trunk: ChangeLog redwax_openssl.c

rt-commit at redwax.eu rt-commit at redwax.eu
Mon Nov 18 13:04:06 CET 2024 

Author: minfrin at redwax.eu
Date: Mon Nov 18 13:04:04 2024
New Revision: 193

Log:
Fix a segfault when trusted certificates are
loaded with OpenSSL, and a further attempt is
made to apply a module specific configuration
to the certificate.

Modified:
    redwax-tool/trunk/ChangeLog
    redwax-tool/trunk/redwax_openssl.c

Modified: redwax-tool/trunk/ChangeLog
==============================================================================
--- redwax-tool/trunk/ChangeLog	(original)
+++ redwax-tool/trunk/ChangeLog	Mon Nov 18 13:04:04 2024
@@ -1,5 +1,10 @@
 
 Changes with v0.9.7
+
+ *) Fix a segfault when trusted certificates are
+    loaded with OpenSSL, and a further attempt is
+    made to apply a module specific configuration
+    to the certificate. [Graham Leggett]
 
  *) The openssl verify filter was adding the leaf
     certificate twice, once into the leaf

Modified: redwax-tool/trunk/redwax_openssl.c
==============================================================================
--- redwax-tool/trunk/redwax_openssl.c	(original)
+++ redwax-tool/trunk/redwax_openssl.c	Mon Nov 18 13:04:04 2024
@@ -1563,6 +1563,8 @@
 
             apr_pool_create(&cert->pool, r->pool);
 
+            cert->per_module = redwax_create_module_config(cert->pool);
+
             cert->common.type = REDWAX_CERTIFICATE_X509;
             cert->common.category = REDWAX_CERTIFICATE_TRUSTED;
 
@@ -1603,6 +1605,8 @@
                 cert = apr_array_push(r->trusted_in);
 
                 apr_pool_create(&cert->pool, r->pool);
+
+                cert->per_module = redwax_create_module_config(cert->pool);
 
                 cert->common.type = REDWAX_CERTIFICATE_X509;
                 cert->common.category = REDWAX_CERTIFICATE_TRUSTED;
@@ -3505,6 +3509,8 @@
 
             apr_pool_create(&cert->pool, r->pool);
 
+            cert->per_module = redwax_create_module_config(cert->pool);
+
             cert->common.type = REDWAX_CERTIFICATE_X509;
             cert->common.category = REDWAX_CERTIFICATE_INTERMEDIATE;
 
@@ -3517,6 +3523,8 @@
             cert = apr_array_push(r->certs_in);
 
             apr_pool_create(&cert->pool, r->pool);
+
+            cert->per_module = redwax_create_module_config(cert->pool);
 
             cert->common.type = REDWAX_CERTIFICATE_X509;
             cert->common.category = REDWAX_CERTIFICATE_END_ENTITY;

More information about the rt-commit mailing list