On 23.11.2009 18:57, John Lightsey wrote: > On Sun, 2009-11-22 at 01:21 +0100, Rainer Jung wrote: >> Backport is not totally straightforward, because the original patches >> use the filter architecture not present in Apache 1.3. >> >> Any Feedback on the patch is welcome. Some additional debug output can >> be activated by using -DRENEG_DEBUG. >> > > There are a few lines of c99 syntax in this patch (variable declarations > of "char *reneg" in the middle of code) that cause it to fail with gcc > 2.95. > > Seems to work fine otherwise.
Thanks again. I updated the patch: http://people.apache.org/~rjung/patches/cve-2009-3555_mod_ssl_2_8_21-1_3_41-v2.patch The only changes are in ssl_engine_io.c, where the declaration of "char *reneg" is moved 4 times to the beginning of the function. Anything else you observed? Regards, Rainer ______________________________________________________________________ Apache Interface to OpenSSL (mod_ssl) www.modssl.org User Support Mailing List modssl-users@modssl.org Automated List Manager majord...@modssl.org
