Preserve session->sess_cert on ticket renewal.

Turns out the safer/simpler method still wasn't quite right. :-)
session->sess_cert isn't serialized and deserialized, which is poor. Duplicate
it manually for now. Leave a TODO to get rid of that field altogether as it's
not especially helpful. The certificate-related fields should be in the
session. The others probably have no reason to be preserved on resumptions at

Test by making assert the peer cert chain is there or not as


Change-Id: I44034167629720d6e2b7b0b938d58bcab3ab0abe
Reviewed-by: Adam Langley <>
5 files changed