Never call load_dh_param(NULL) because this leads to an illegal

fopen(NULL).

Never call load_dh_param(NULL) because this leads to an illegal
fopen(NULL).
15d52ddb · Bodo Möller · d48f487e · 15d52ddb · 15d52ddb
隐藏空白更改
内联并排

Showing with 10 addition and 4 deletion

CHANGES CHANGES +3 -0

apps/s_server.c apps/s_server.c +7 -4

未找到文件。
--- a/CHANGES
+++ b/CHANGES
@@ -4,6 +4,9 @@

 Changes between 0.9.6 and 0.9.7  [xx XXX 2000]

+  *) Never call load_dh_param(NULL) in s_server.
+     [Bodo Moeller]
+
  *) Add engine application.  It can currently list engines by name and
     identity, and test if they are actually available.
     [Richard Levitte]

--- a/apps/s_server.c
+++ b/apps/s_server.c
@@ -416,9 +416,6 @@ int MAIN(int argc, char *argv[])
 	int state=0;
 	SSL_METHOD *meth=NULL;
 	ENGINE *e=NULL;
-#ifndef NO_DH
-	DH *dh=NULL;
-#endif

 #if !defined(NO_SSL2) && !defined(NO_SSL3)
 	meth=SSLv23_server_method();
@@ -682,7 +679,13 @@ bad:
 #ifndef NO_DH
 	if (!no_dhe)
 		{
-		dh=load_dh_param(dhfile ? dhfile : s_cert_file);
+		DH *dh=NULL;
+
+		if (dhfile)
+			dh = load_dh_param(dhfile);
+		else if (s_cert_file)
+			dh = load_dh_param(s_cert_file);
+
 		if (dh != NULL)
 			{
 			BIO_printf(bio_s_out,"Setting temp DH parameters\n");