OpenSSL crash after reuse of contexts
The partial shutdown on the non-blocking socket can result in NULL pointer references inside OpenSSL later. The attached patch avoids that.
At least on NetBSD this can be triggered very easily.
Updated by stbuehler over 10 years ago
- Status changed from New to Invalid
- Patch available changed from Yes to No
That is not mentioned in the man page (http://www.openssl.org/docs/ssl/SSL_shutdown.html); and i don't see why this is a bug in lighttpd.
Btw: if you can easily reproduce NULL pointer dereferences, you should always provide the backtrace.
Also available in: Atom