CERT tidy

Move per-connection state out of the CERT structure: which should just be for shared configuration data (e.g. certificates to use). In particular move temporary premaster secret, raw ciphers, peer signature algorithms and shared signature algorithms. Reviewed-by: Rich Salz <rsalz@openssl.org>
author: Dr. Stephen Henson <steve@openssl.org> 2015-05-12 17:17:37 +0100
committer: Dr. Stephen Henson <steve@openssl.org> 2015-05-18 18:49:13 +0100
commit: 76106e60a827ddaefe1fee28a749018241d8f517 (patch)
tree: d7a95878276070ae6b9b0f07e6cf88990e32a577 /ssl/s3_srvr.c
parent: 6c5b6cb035666d46495ccbe4a4f3d5e3a659cd40 (diff)
1 files changed, 4 insertions, 4 deletions
diff --git a/ssl/s3_srvr.c b/ssl/s3_srvr.c
index ce092a70a3..6bc80d579b 100644
--- a/ssl/s3_srvr.c
+++ b/ssl/s3_srvr.c
@@ -3572,13 +3572,13 @@ STACK_OF(SSL_CIPHER) *ssl_bytes_to_cipher_list(SSL *s, unsigned char *p,
         sk_SSL_CIPHER_zero(sk);
     }
 
-    OPENSSL_free(s->cert->ciphers_raw);
-    s->cert->ciphers_raw = BUF_memdup(p, num);
-    if (s->cert->ciphers_raw == NULL) {
+    OPENSSL_free(s->s3->tmp.ciphers_raw);
+    s->s3->tmp.ciphers_raw = BUF_memdup(p, num);
+    if (s->s3->tmp.ciphers_raw == NULL) {
         SSLerr(SSL_F_SSL_BYTES_TO_CIPHER_LIST, ERR_R_MALLOC_FAILURE);
         goto err;
     }
-    s->cert->ciphers_rawlen = (size_t)num;
+    s->s3->tmp.ciphers_rawlen = (size_t)num;
 
     for (i = 0; i < num; i += n) {
         /* Check for TLS_EMPTY_RENEGOTIATION_INFO_SCSV */
author	Dr. Stephen Henson <steve@openssl.org>	2015-05-12 17:17:37 +0100
committer	Dr. Stephen Henson <steve@openssl.org>	2015-05-18 18:49:13 +0100
commit	76106e60a827ddaefe1fee28a749018241d8f517 (patch)
tree	d7a95878276070ae6b9b0f07e6cf88990e32a577 /ssl/s3_srvr.c
parent	6c5b6cb035666d46495ccbe4a4f3d5e3a659cd40 (diff)