projects
/
openssl.git
/ commitdiff
commit
grep
author
committer
pickaxe
?
search:
re
summary
|
shortlog
|
log
|
commit
| commitdiff |
tree
raw
|
patch
| inline |
side by side
(parent:
bb1aaab
)
Ensure we don't call the OCSP callback if resuming a session
author
Matt Caswell
<matt@openssl.org>
Mon, 30 Nov 2015 13:29:41 +0000
(13:29 +0000)
committer
Matt Caswell
<matt@openssl.org>
Sun, 27 Dec 2015 21:59:04 +0000
(21:59 +0000)
It makes no sense to call the OCSP status callback if we are resuming a
session because no certificates will be sent.
Reviewed-by: Viktor Dukhovni <viktor@openssl.org>
ssl/t1_lib.c
patch
|
blob
|
history
diff --git
a/ssl/t1_lib.c
b/ssl/t1_lib.c
index e7d9f64bf981908c16964712d4522822819a7856..df62a136f49ba7358dff6afaa4329c875b4a6c77 100644
(file)
--- a/
ssl/t1_lib.c
+++ b/
ssl/t1_lib.c
@@
-2855,7
+2855,7
@@
int ssl_check_serverhello_tlsext(SSL *s)
* callback
*/
if ((s->tlsext_status_type != -1) && !(s->tlsext_status_expected)
- && s->ctx && s->ctx->tlsext_status_cb) {
+ &&
!(s->hit) &&
s->ctx && s->ctx->tlsext_status_cb) {
int r;
/*
* Call callback with resp == NULL and resplen == -1 so callback
projects / openssl.git / commitdiff