Fix Kerberos issue in ssl_session_dup

The fix for CVE-2015-1791 introduced an error in ssl_session_dup for Kerberos. Reviewed-by: Tim Hudson <tjh@openssl.org> (cherry picked from commit dcad51bc13c9b716d9a66248bcc4038c071ff158)
author: Matt Caswell <matt@openssl.org> 2015-06-10 09:32:34 +0100
committer: Matt Caswell <matt@openssl.org> 2015-06-10 10:02:16 +0100
commit: 106a9a5d7e26e728a654d7424849081bd988d4a5 (patch)
tree: ab578e8b2e743fdc94b8b75d8d830594929402b9
parent: cb972a4fe710c3e07300cdd3e3c3d41a42fc9672 (diff)
1 files changed, 1 insertions, 1 deletions
diff --git a/ssl/ssl_sess.c b/ssl/ssl_sess.c
index e673f9c621..8325cb316b 100644
--- a/ssl/ssl_sess.c
+++ b/ssl/ssl_sess.c
@@ -242,7 +242,7 @@ SSL_SESSION *ssl_session_dup(SSL_SESSION *src, int ticket)
     memcpy(dest, src, sizeof(*dest));
 
 #ifndef OPENSSL_NO_KRB5
-    dest->krb5_client_princ_len = dest->krb5_client_princ_len;
+    dest->krb5_client_princ_len = src->krb5_client_princ_len;
     if (src->krb5_client_princ_len > 0)
         memcpy(dest->krb5_client_princ, src->krb5_client_princ,
                src->krb5_client_princ_len);
author	Matt Caswell <matt@openssl.org>	2015-06-10 09:32:34 +0100
committer	Matt Caswell <matt@openssl.org>	2015-06-10 10:02:16 +0100
commit	106a9a5d7e26e728a654d7424849081bd988d4a5 (patch)
tree	ab578e8b2e743fdc94b8b75d8d830594929402b9
parent	cb972a4fe710c3e07300cdd3e3c3d41a42fc9672 (diff)