httpd-bugs mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From bugzi...@apache.org
Subject DO NOT REPLY [Bug 47408] segfault potential in modssl ssl_log_cxerror
Date Tue, 23 Jun 2009 13:57:29 GMT
https://issues.apache.org/bugzilla/show_bug.cgi?id=47408


Joe Orton <jorton@redhat.com> changed:

           What    |Removed                     |Added
----------------------------------------------------------------------------
             Status|NEW                         |NEEDINFO




--- Comment #3 from Joe Orton <jorton@redhat.com>  2009-06-23 06:57:27 PST ---
So far as I can tell, that policy verification code is only going to get
invoked if the caller has explicitly enabled policy checking:

        if (!bad_chain && (ctx->param->flags & X509_V_FLAG_POLICY_CHECK))
                ok = ctx->check_policy(ctx);

and this is not done by default, nor can be enabled via mod_ssl.  Am I missing
something?

-- 
Configure bugmail: https://issues.apache.org/bugzilla/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug.

---------------------------------------------------------------------
To unsubscribe, e-mail: bugs-unsubscribe@httpd.apache.org
For additional commands, e-mail: bugs-help@httpd.apache.org


Mime
View raw message