Store verify_result with sessions to avoid potential security hole.

For the server side this was already done one year ago :-(
author: Lutz Jänicke <jaenicke@openssl.org> 2000-11-29 18:12:32 +0000
committer: Lutz Jänicke <jaenicke@openssl.org> 2000-11-29 18:12:32 +0000
commit: 673d7ac12144185f9729dd014ccab4fc4d13a43a (patch)
tree: 918c851e0711938b8fdc17dc361097b593b84f9c /ssl/ssl_sess.c
parent: 666d43753884145f56b83651416156442a5a993e (diff)
1 files changed, 1 insertions, 0 deletions
diff --git a/ssl/ssl_sess.c b/ssl/ssl_sess.c
index 416def8908..7064262def 100644
--- a/ssl/ssl_sess.c
+++ b/ssl/ssl_sess.c
@@ -508,6 +508,7 @@ int SSL_set_session(SSL *s, SSL_SESSION *session)
 		if (s->session != NULL)
 			SSL_SESSION_free(s->session);
 		s->session=session;
+		s->verify_result = s->session->verify_result;
 		/* CRYPTO_w_unlock(CRYPTO_LOCK_SSL);*/
 		ret=1;
 		}
author	Lutz Jänicke <jaenicke@openssl.org>	2000-11-29 18:12:32 +0000
committer	Lutz Jänicke <jaenicke@openssl.org>	2000-11-29 18:12:32 +0000
commit	673d7ac12144185f9729dd014ccab4fc4d13a43a (patch)
tree	918c851e0711938b8fdc17dc361097b593b84f9c /ssl/ssl_sess.c
parent	666d43753884145f56b83651416156442a5a993e (diff)