Hi Vincent,
On Tue, Jul 12, 2016 at 06:34:00AM +0200, Vincent Bernat wrote:
> ??? 30 juin 2016 20:19 CEST, Willy Tarreau <w...@1wt.eu> :
>
> >> - BUG/MINOR: ssl: fix potential memory leak in ssl_sock_load_dh_params()
> >
> > For those interested, we found a regression with this patch, some of our
> > processes crash with openssl-1.0.2 and dh-param 1024. Setting dh-param 2048
> > is enough to work around the issue.
> >
> > Distro packagers will want to add commit 2706acc ("Revert "BUG/MINOR: ssl:
> > fix potential memory leak in ssl_sock_load_dh_params()"") to their patches
> > in order to fix this problem.
> >
> > We'll have to issue 1.6.7 shortly (but let's wait for a few other reports
> > first).
>
> Do you have an ETA for this?
I can try to make it today. I expected to do it yesterday but mondays fly
very fast...
> I use your message as an excuse for myself for not doing another upload.
You're right :-)
> If you say you won't have time before
> end of july, I can do an upload now. If you say you will do it on next
> week-end, I will happily wait and congratulate myself for not uploading
> too soon.
Let's say that if on Wednesday evening it's not done, you'll scold me in
public for not standing by my promises. I'll then have Thursday to do it,
it's a day off here :-)
Cheers,
Willy
