RFC 5878 support.

author: Ben Laurie <ben@openssl.org> 2012-05-30 10:10:58 +0000
committer: Ben Laurie <ben@openssl.org> 2012-05-30 10:10:58 +0000
commit: a9e1c50bb09a110d4774e6710f9322344684fa2d (patch)
tree: e030d9ea1f33d1c7d310e8ceba621e77e59b988b /ssl/ssl_cert.c
parent: 03c1d9f99d95e19d4940aae8587808924cab486a (diff)
1 files changed, 20 insertions, 0 deletions
diff --git a/ssl/ssl_cert.c b/ssl/ssl_cert.c
index 222f703284..fcf462d41a 100644
--- a/ssl/ssl_cert.c
+++ b/ssl/ssl_cert.c
@@ -334,6 +334,22 @@ CERT *ssl_cert_dup(CERT *cert)
 				CRYPTO_add(&x->references, 1, CRYPTO_LOCK_X509);
 				}
 			}
+                if (cert->pkeys[i].authz != NULL)
+			{
+			/* Just copy everything. */
+			ret->pkeys[i].authz_length =
+				cert->pkeys[i].authz_length;
+			ret->pkeys[i].authz =
+				OPENSSL_malloc(ret->pkeys[i].authz_length);
+			if (ret->pkeys[i].authz == NULL)
+				{
+				SSLerr(SSL_F_SSL_CERT_DUP, ERR_R_MALLOC_FAILURE);
+				return(NULL);
+				}
+			memcpy(ret->pkeys[i].authz,
+			       cert->pkeys[i].authz,
+			       cert->pkeys[i].authz_length);
+			}
 		}
 	
 	ret->references=1;
@@ -422,6 +438,10 @@ void ssl_cert_free(CERT *c)
 		if (c->pkeys[i].publickey != NULL)
 			EVP_PKEY_free(c->pkeys[i].publickey);
 #endif
+#ifndef OPENSSL_NO_TLSEXT
+                if (c->pkeys[i].authz != NULL)
+			OPENSSL_free(c->pkeys[i].authz);
+#endif
 		}
 	if (c->sigalgs)
 		OPENSSL_free(c->sigalgs);
author	Ben Laurie <ben@openssl.org>	2012-05-30 10:10:58 +0000
committer	Ben Laurie <ben@openssl.org>	2012-05-30 10:10:58 +0000
commit	a9e1c50bb09a110d4774e6710f9322344684fa2d (patch)
tree	e030d9ea1f33d1c7d310e8ceba621e77e59b988b /ssl/ssl_cert.c
parent	03c1d9f99d95e19d4940aae8587808924cab486a (diff)