RFC 5878 support.

author: Ben Laurie <ben@openssl.org> 2012-05-29 17:27:48 +0000
committer: Ben Laurie <ben@openssl.org> 2012-05-29 17:27:48 +0000
commit: 8a02a46a5cb92790c79bfbf04c043e234e2af6bf (patch)
tree: b1f3963b25a9be2887d673228df7d811a1572d59 /ssl/ssl_cert.c
parent: 0de5a0feeef1e43aa080189c25af691448a2d860 (diff)
1 files changed, 20 insertions, 0 deletions
diff --git a/ssl/ssl_cert.c b/ssl/ssl_cert.c
index 222f703284..fcf462d41a 100644
--- a/ssl/ssl_cert.c
+++ b/ssl/ssl_cert.c
@@ -334,6 +334,22 @@ CERT *ssl_cert_dup(CERT *cert)
 				CRYPTO_add(&x->references, 1, CRYPTO_LOCK_X509);
 				}
 			}
+                if (cert->pkeys[i].authz != NULL)
+			{
+			/* Just copy everything. */
+			ret->pkeys[i].authz_length =
+				cert->pkeys[i].authz_length;
+			ret->pkeys[i].authz =
+				OPENSSL_malloc(ret->pkeys[i].authz_length);
+			if (ret->pkeys[i].authz == NULL)
+				{
+				SSLerr(SSL_F_SSL_CERT_DUP, ERR_R_MALLOC_FAILURE);
+				return(NULL);
+				}
+			memcpy(ret->pkeys[i].authz,
+			       cert->pkeys[i].authz,
+			       cert->pkeys[i].authz_length);
+			}
 		}
 	
 	ret->references=1;
@@ -422,6 +438,10 @@ void ssl_cert_free(CERT *c)
 		if (c->pkeys[i].publickey != NULL)
 			EVP_PKEY_free(c->pkeys[i].publickey);
 #endif
+#ifndef OPENSSL_NO_TLSEXT
+                if (c->pkeys[i].authz != NULL)
+			OPENSSL_free(c->pkeys[i].authz);
+#endif
 		}
 	if (c->sigalgs)
 		OPENSSL_free(c->sigalgs);
author	Ben Laurie <ben@openssl.org>	2012-05-29 17:27:48 +0000
committer	Ben Laurie <ben@openssl.org>	2012-05-29 17:27:48 +0000
commit	8a02a46a5cb92790c79bfbf04c043e234e2af6bf (patch)
tree	b1f3963b25a9be2887d673228df7d811a1572d59 /ssl/ssl_cert.c
parent	0de5a0feeef1e43aa080189c25af691448a2d860 (diff)