Take away SSL_MODE_RELEASE_BUFFERS for now.

Prevents the weird freelist munging that happens when we're actually freeing memory (which we should be forcing it to do by setting freelist_max_len to 0).
2014-04-10 22:52:23 +02:00 · 2014-04-10 22:52:23 +02:00 · 95819d2dc2
parent 5e2fb37c53
commit 95819d2dc2
1 changed files with 0 additions and 1 deletions
--- a/src/domain.c
+++ b/src/domain.c
@ -115,7 +115,6 @@ kore_domain_sslstart(struct kore_domain *dom)
 	    (unsigned char *)SSL_SESSION_ID, strlen(SSL_SESSION_ID));

 	dom->ssl_ctx->freelist_max_len = 0;
-	SSL_CTX_set_mode(dom->ssl_ctx, SSL_MODE_RELEASE_BUFFERS);
 	SSL_CTX_set_mode(dom->ssl_ctx, SSL_MODE_ENABLE_PARTIAL_WRITE);

 	SSL_CTX_set_options(dom->ssl_ctx, SSL_OP_NO_SSLv2);