diff options
author | Matt Caswell <matt@openssl.org> | 2015-11-30 13:29:41 +0000 |
---|---|---|
committer | Matt Caswell <matt@openssl.org> | 2015-12-27 21:59:04 +0000 |
commit | 80e339fd09ca32680e0c0cbcfa40d73212ea276d (patch) | |
tree | 08ecf74cfe1c0cb83517fcb2f000e128bf7feebb /ssl/t1_lib.c | |
parent | bb1aaab42880489729aeafea27d3569cce60c20b (diff) |
Ensure we don't call the OCSP callback if resuming a session
It makes no sense to call the OCSP status callback if we are resuming a
session because no certificates will be sent.
Reviewed-by: Viktor Dukhovni <viktor@openssl.org>
Diffstat (limited to 'ssl/t1_lib.c')
-rw-r--r-- | ssl/t1_lib.c | 2 |
1 files changed, 1 insertions, 1 deletions
diff --git a/ssl/t1_lib.c b/ssl/t1_lib.c index e7d9f64bf9..df62a136f4 100644 --- a/ssl/t1_lib.c +++ b/ssl/t1_lib.c @@ -2855,7 +2855,7 @@ int ssl_check_serverhello_tlsext(SSL *s) * callback */ if ((s->tlsext_status_type != -1) && !(s->tlsext_status_expected) - && s->ctx && s->ctx->tlsext_status_cb) { + && !(s->hit) && s->ctx && s->ctx->tlsext_status_cb) { int r; /* * Call callback with resp == NULL and resplen == -1 so callback |