PR:

Obtained from: Submitted by: Madhusudan Mathihalli <madhusudan_mathihalli@hp.com> Reviewed by: dougm adjust to SSL_SESSION_id2sz() prototype change git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@93907 13f79535-47bb-0310-9956-ffa450edef68
2025-08-15 23:27:39 +00:00 · 2002-03-13 17:09:51 +00:00
parent 7d097d17ad
commit 0b5ac66e05
1 changed files with 3 additions and 1 deletions
--- a/modules/ssl/ssl_engine_vars.c
+++ b/modules/ssl/ssl_engine_vars.c
@ -282,10 +282,12 @@ static char *ssl_var_lookup_ssl(apr_pool_t *p, conn_rec *c, char *var)
        result = (char *)SSL_get_version(ssl);
    }
    else if (ssl != NULL && strcEQ(var, "SESSION_ID")) {
+        char buf[SSL_SESSION_ID_STRING_LEN];
        SSL_SESSION *pSession = SSL_get_session(ssl);
        result = apr_pstrdup(p, SSL_SESSION_id2sz(
                                SSL_SESSION_get_session_id(pSession),
-                                SSL_SESSION_get_session_id_length(pSession)));
+                                SSL_SESSION_get_session_id_length(pSession),
+                                buf, sizeof(buf)));
    }
    else if (ssl != NULL && strlen(var) >= 6 && strcEQn(var, "CIPHER", 6)) {
        result = ssl_var_lookup_ssl_cipher(p, c, var+6);