Google Git
Sign in
boringssl / boringssl / 680ca961f993ac0c7f191dcf289c442cf96c4d2c
commit680ca961f993ac0c7f191dcf289c442cf96c4d2c[log] [tgz]
authorDavid Benjamin <davidben@chromium.org>Thu Jun 18 12:37:23 2015 -0400
committerAdam Langley <agl@google.com>Thu Jun 18 17:53:57 2015 +0000
tree5f2017c8941c67f2d3daba1c1a83894267232a72
parentd65bb78c6c350066cbd2f8d3f860848a6cd14895 [diff]
Preserve session->sess_cert on ticket renewal.

Turns out the safer/simpler method still wasn't quite right. :-)
session->sess_cert isn't serialized and deserialized, which is poor. Duplicate
it manually for now. Leave a TODO to get rid of that field altogether as it's
not especially helpful. The certificate-related fields should be in the
session. The others probably have no reason to be preserved on resumptions at
all.

Test by making bssl_shim.cc assert the peer cert chain is there or not as
expected.

BUG=501220

Change-Id: I44034167629720d6e2b7b0b938d58bcab3ab0abe
Reviewed-on: https://boringssl-review.googlesource.com/5170
Reviewed-by: Adam Langley <agl@google.com>
5 files changed
tree: 5f2017c8941c67f2d3daba1c1a83894267232a72
  1. crypto/
  2. decrepit/
  3. doc/
  4. include/
  5. ssl/
  6. tool/
  7. util/
  8. .clang-format
  9. .gitignore
  10. BUILDING
  11. CMakeLists.txt
  12. codereview.settings
  13. LICENSE
  14. STYLE