source: pkg/security/vinnie/main/lighttpd/trunk/debian/patches/fixopenssl.patch @ 7285

Revision 7285, 956 bytes checked in by alanbach-guest, 2 years ago (diff)
  • Added lighttpd to Vinnie security

  • lighttpd-1.4.26 

    Description: Check the return value from SSL_CTX_set_options() properly.
 Fixes startup with OpenSSL 0.9.8m and newer
Origin: upstream, http://redmine.lighttpd.net/attachments/1095/08-ssl-retval-fix.patch
Bug: http://redmine.lighttpd.net/issues/2157
Bug-Debian: http://bugs.debian.org/572031
Reviewed-by: JÃŒrgen A. Erhard <jae+debian@jaerhard.com>
    old new  
    525525 
    526526                if (!s->ssl_use_sslv2) { 
    527527                        /* disable SSLv2 */ 
    528                         if (SSL_OP_NO_SSLv2 != SSL_CTX_set_options(s->ssl_ctx, SSL_OP_NO_SSLv2)) { 
     528                        if(!(SSL_OP_NO_SSLv2 & SSL_CTX_set_options(s->ssl_ctx, SSL_OP_NO_SSLv2))){ 
    529529                                log_error_write(srv, __FILE__, __LINE__, "ss", "SSL:", 
    530530                                                ERR_error_string(ERR_get_error(), NULL)); 
    531531                                return -1; 
Note: See TracBrowser for help on using the repository browser.