httpd-cvs mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From s.@apache.org
Subject svn commit: r1027239 - /httpd/httpd/trunk/modules/ssl/ssl_engine_init.c
Date Mon, 25 Oct 2010 19:13:20 GMT
Author: sf
Date: Mon Oct 25 19:13:20 2010
New Revision: 1027239

URL: http://svn.apache.org/viewvc?rev=1027239&view=rev
Log:
handle the ca_list == NULL case correctly (which can only happen with out
of memory, anyway)

Modified:
    httpd/httpd/trunk/modules/ssl/ssl_engine_init.c

Modified: httpd/httpd/trunk/modules/ssl/ssl_engine_init.c
URL: http://svn.apache.org/viewvc/httpd/httpd/trunk/modules/ssl/ssl_engine_init.c?rev=1027239&r1=1027238&r2=1027239&view=diff
==============================================================================
--- httpd/httpd/trunk/modules/ssl/ssl_engine_init.c (original)
+++ httpd/httpd/trunk/modules/ssl/ssl_engine_init.c Mon Oct 25 19:13:20 2010
@@ -658,7 +658,7 @@ static void ssl_init_ctx_verify(server_r
             ca_list = ssl_init_FindCAList(s, ptemp,
                                           mctx->auth.ca_cert_file,
                                           mctx->auth.ca_cert_path);
-        if (sk_X509_NAME_num(ca_list) == 0) {
+        if (sk_X509_NAME_num(ca_list) <= 0) {
             ap_log_error(APLOG_MARK, APLOG_EMERG, 0, s,
                     "Unable to determine list of acceptable "
                     "CA certificates for client authentication");



Mime
View raw message