]> git.kaiwu.me - nginx.git/commit
OCSP: resolve cleanup on connection close
authorRoman Arutyunyan <arut@nginx.com>
Tue, 21 Apr 2026 10:51:41 +0000 (14:51 +0400)
committerSergey Kandaurov <s.kandaurov@f5.com>
Wed, 13 May 2026 17:20:55 +0000 (21:20 +0400)
commitd2b8d47741820c9fb134c6731ecb40b21f3085b1
treec3056cee894a608e7c435b016dff0c0405524682
parentce3362cfd5c3e1434a6151cfa585b89114389da7
OCSP: resolve cleanup on connection close

Previously, when a client SSL connection was terminated (typically due to a
timeout) while resolving an OCSP responder, the OCSP context was freed, but
the resolve context was not.  This resulted in use-after-free on resolve
completion.

Reported by Leo Lin.
src/event/ngx_event_openssl_stapling.c