[openssl] master update
Viktor Dukhovni
viktor at openssl.org
Tue Jul 16 10:12:46 UTC 2019
The branch master has been updated
via 5fe499cb75469fbda08d96facd13d14a402a6d44 (commit)
from 12df11bdf11fb6a3410483b0097f032e329b4623 (commit)
- Log -----------------------------------------------------------------
commit 5fe499cb75469fbda08d96facd13d14a402a6d44
Author: Viktor Dukhovni <openssl-users at dukhovni.org>
Date: Mon Jul 15 13:12:04 2019 -0400
Actually silently ignore GET / OCSP requests
Reviewed-by: Matt Caswell <matt at openssl.org>
-----------------------------------------------------------------------
Summary of changes:
apps/ocsp.c | 6 ++++--
1 file changed, 4 insertions(+), 2 deletions(-)
diff --git a/apps/ocsp.c b/apps/ocsp.c
index 9f2cf45..71c6a56 100644
--- a/apps/ocsp.c
+++ b/apps/ocsp.c
@@ -1436,9 +1436,11 @@ static int do_responder(OCSP_REQUEST **preq, BIO **pcbio, BIO *acbio,
*q = '\0';
/*
- * Skip "GET / HTTP..." requests often used by load-balancers
+ * Skip "GET / HTTP..." requests often used by load-balancers. Note:
+ * 'p' was incremented above to point to the first byte *after* the
+ * leading slash, so with 'GET / ' it is now an empty string.
*/
- if (p[1] == '\0')
+ if (p[0] == '\0')
goto out;
len = urldecode(p);
More information about the openssl-commits
mailing list