Mailing List Archive: svn commit: r1916054 - /httpd/httpd/trunk/modules/ssl/ssl_engine

Author: jorton
Date: Thu Feb 29 13:35:04 2024
New Revision: 1916054

URL: http://svn.apache.org/viewvc?rev=1916054&view=rev
Log:
mod_ssl: Check SSL_CTX_new() return value

SSL_CTX_new() will return NULL if there was an error creating a new SSL context.

Submitted by: StephenWall
Github: closes #402

Modified:
httpd/httpd/trunk/modules/ssl/ssl_engine_init.c

Modified: httpd/httpd/trunk/modules/ssl/ssl_engine_init.c
URL: http://svn.apache.org/viewvc/httpd/httpd/trunk/modules/ssl/ssl_engine_init.c?rev=1916054&r1=1916053&r2=1916054&view=diff
==============================================================================
--- httpd/httpd/trunk/modules/ssl/ssl_engine_init.c (original)
+++ httpd/httpd/trunk/modules/ssl/ssl_engine_init.c Thu Feb 29 13:35:04 2024
@@ -738,6 +738,11 @@ static apr_status_t ssl_init_ctx_protoco
TLS_server_method(); /* server */
#endif
ctx = SSL_CTX_new(method);
+ if (ctx == NULL) {
+ /* Can fail for some system/install mis-configuration. */
+ ssl_log_ssl_error(SSLLOG_MARK, APLOG_EMERG, s);
+ return ssl_die(s);
+ }

mctx->ssl_ctx = ctx;