Google Git
Sign in
boringssl / boringssl.git / 5aea93e6046dea2d3aa3fdf1da3769867630a1ae
commit5aea93e6046dea2d3aa3fdf1da3769867630a1ae[log] [tgz]
authorDavid Benjamin <davidben@chromium.org>Tue May 26 16:33:02 2015 -0400
committerAdam Langley <agl@google.com>Wed May 27 21:50:24 2015 +0000
tree8f8548f3f07c488a2c7731415cdec98249f06754
parent34a1635b3f5266b448f71b7fd3b78bf99142c729 [diff]
Deprecate and no-op SSL_VERIFY_CLIENT_ONCE.

This is documented as "Only request a client certificate on the initial TLS/SSL
handshake. Do not ask for a client certificate again in case of a
renegotiation." Server-side renegotiation is gone.

I'm not sure this flag has ever worked anyway, dating all the way back to
SSLeay 0.8.1b. ssl_get_new_session overwrites s->session, so the old
session->peer is lost.

Change-Id: Ie173243e189c63272c368a55167b8596494fd59c
Reviewed-on: https://boringssl-review.googlesource.com/4883
Reviewed-by: Adam Langley <agl@google.com>
3 files changed
tree: 8f8548f3f07c488a2c7731415cdec98249f06754
  1. crypto/
  2. decrepit/
  3. doc/
  4. include/
  5. ssl/
  6. tool/
  7. util/
  8. .clang-format
  9. .gitignore
  10. BUILDING
  11. CMakeLists.txt
  12. codereview.settings
  13. LICENSE
  14. STYLE