sslproc: don't send updated config to dead/shutdown sslds

They might be running older versions of the SSL library that
doesn't support the key type or ciphers being configured.
This commit is contained in:
Simon Arlott 2016-04-29 07:35:43 +01:00 committed by Keith Buck
parent 9c98c1f866
commit 0264fe161f

View file

@ -746,6 +746,10 @@ send_new_ssl_certs(const char *ssl_cert, const char *ssl_private_key, const char
RB_DLINK_FOREACH(ptr, ssl_daemons.head) RB_DLINK_FOREACH(ptr, ssl_daemons.head)
{ {
ssl_ctl_t *ctl = ptr->data; ssl_ctl_t *ctl = ptr->data;
if (ctl->dead || ctl->shutdown)
continue;
send_certfp_method(ctl, method); send_certfp_method(ctl, method);
send_new_ssl_certs_one(ctl, ssl_cert, ssl_private_key, ssl_dh_params, ssl_cipher_list); send_new_ssl_certs_one(ctl, ssl_cert, ssl_private_key, ssl_dh_params, ssl_cipher_list);
} }