Store verify_result with sessions to avoid potential security hole.

For the server side this was already done one year ago :-(
author: Lutz Jänicke <jaenicke@openssl.org> 2000-11-29 16:04:38 +0000
committer: Lutz Jänicke <jaenicke@openssl.org> 2000-11-29 16:04:38 +0000
commit: 0dd2254d7667979ea998af1f480a7841ea864ad5 (patch)
tree: b07297012e16ee82c54a74d01029abff3c0f390a /ssl/s3_clnt.c
parent: 03a0848922d3a4b1a6f216df1c2470a6b946cd87 (diff)
download: openssl-0dd2254d7667979ea998af1f480a7841ea864ad5.tar.gz
1 files changed, 1 insertions, 0 deletions
diff --git a/ssl/s3_clnt.c b/ssl/s3_clnt.c
index 62040f9f1d..eec45cfa48 100644
--- a/ssl/s3_clnt.c
+++ b/ssl/s3_clnt.c
@@ -815,6 +815,7 @@ static int ssl3_get_server_certificate(SSL *s)
 		X509_free(s->session->peer);
 	CRYPTO_add(&x->references,1,CRYPTO_LOCK_X509);
 	s->session->peer=x;
+	s->session->verify_result = s->verify_result;
 
 	x=NULL;
 	ret=1;
author	Lutz Jänicke <jaenicke@openssl.org>	2000-11-29 16:04:38 +0000
committer	Lutz Jänicke <jaenicke@openssl.org>	2000-11-29 16:04:38 +0000
commit	0dd2254d7667979ea998af1f480a7841ea864ad5 (patch)
tree	b07297012e16ee82c54a74d01029abff3c0f390a /ssl/s3_clnt.c
parent	03a0848922d3a4b1a6f216df1c2470a6b946cd87 (diff)
download	openssl-0dd2254d7667979ea998af1f480a7841ea864ad5.tar.gz