RFC 5878 support.

author: Ben Laurie <ben@openssl.org> 2012-05-30 10:10:58 +0000
committer: Ben Laurie <ben@openssl.org> 2012-05-30 10:10:58 +0000
commit: a9e1c50bb09a110d4774e6710f9322344684fa2d (patch)
tree: e030d9ea1f33d1c7d310e8ceba621e77e59b988b /ssl/ssl_sess.c
parent: 03c1d9f99d95e19d4940aae8587808924cab486a (diff)
1 files changed, 11 insertions, 0 deletions
diff --git a/ssl/ssl_sess.c b/ssl/ssl_sess.c
index 9e8f2e4ece..093ea60ae6 100644
--- a/ssl/ssl_sess.c
+++ b/ssl/ssl_sess.c
@@ -739,6 +739,8 @@ void SSL_SESSION_free(SSL_SESSION *ss)
 	ss->tlsext_ellipticcurvelist_length = 0;
 	if (ss->tlsext_ellipticcurvelist != NULL) OPENSSL_free(ss->tlsext_ellipticcurvelist);
 #endif /* OPENSSL_NO_EC */
+	if (ss->audit_proof != NULL) OPENSSL_free(ss->audit_proof);
+	ss->audit_proof_length = 0;
 #endif
 #ifndef OPENSSL_NO_PSK
 	if (ss->psk_identity_hint != NULL)
@@ -860,6 +862,15 @@ int SSL_SESSION_set1_id_context(SSL_SESSION *s,const unsigned char *sid_ctx,
 	return 1;
 	}
 
+#ifndef OPENSSL_NO_TLSEXT
+unsigned char *SSL_SESSION_get_tlsext_authz_server_audit_proof(SSL_SESSION *s, size_t *proof_length)
+	{
+	if (s->audit_proof != NULL)
+		*proof_length = s->audit_proof_length;
+	return s->audit_proof;
+	}
+#endif
+
 long SSL_CTX_set_timeout(SSL_CTX *s, long t)
 	{
 	long l;
author	Ben Laurie <ben@openssl.org>	2012-05-30 10:10:58 +0000
committer	Ben Laurie <ben@openssl.org>	2012-05-30 10:10:58 +0000
commit	a9e1c50bb09a110d4774e6710f9322344684fa2d (patch)
tree	e030d9ea1f33d1c7d310e8ceba621e77e59b988b /ssl/ssl_sess.c
parent	03c1d9f99d95e19d4940aae8587808924cab486a (diff)