Google Git
Sign in
boringssl / boringssl.git / 1d128f369c797b8bae996d5e973fc0b8a099a1b8
commit1d128f369c797b8bae996d5e973fc0b8a099a1b8[log] [tgz]
authorDavid Benjamin <davidben@chromium.org>Tue Sep 08 17:41:40 2015 -0400
committerAdam Langley <agl@google.com>Fri Sep 11 22:30:55 2015 +0000
treec6742edbf730a98d4119beb7e77358e60d0c9c8b
parentaf096751e8d1cae9a570990b49b12527317c0003 [diff]
Make SSL_get_client_CA_list slightly more OpenSSL-compatible.

SSL_get_client_CA_list is one of those dreaded functions which may query either
configuration state or handshake state. Moreover, it does so based on
|ssl->server|, which may not be configured until later. Also check
|ssl->handshake_func| to make sure |ssl| is not in an indeterminate state.

This also fixes a bug where SSL_get_client_CA_list wouldn't work in DTLS due to
the incorrect |ssl->version| check.

Change-Id: Ie564dbfeecd2c8257fd6bcb148bc5db827390c77
Reviewed-on: https://boringssl-review.googlesource.com/5827
Reviewed-by: Adam Langley <agl@google.com>
2 files changed
tree: c6742edbf730a98d4119beb7e77358e60d0c9c8b
  1. crypto/
  2. decrepit/
  3. include/
  4. ssl/
  5. tool/
  6. util/
  7. .clang-format
  8. .gitignore
  9. BUILDING.md
  10. CMakeLists.txt
  11. codereview.settings
  12. LICENSE
  13. PORTING.md
  14. STYLE.md