diff options
author | Bodo Möller <bodo@openssl.org> | 1999-05-02 04:03:22 +0000 |
---|---|---|
committer | Bodo Möller <bodo@openssl.org> | 1999-05-02 04:03:22 +0000 |
commit | 8051996a5be1add0a935e1c60fe16c05f7b63b95 (patch) | |
tree | d9f5d70edabad61c00d6a22038181440f55b4fe7 /ssl | |
parent | 5b1b04460664a40925b611358b8cde57f574982e (diff) |
Annotate a bug.
Submitted by:
Reviewed by:
PR:
Diffstat (limited to 'ssl')
-rw-r--r-- | ssl/s3_srvr.c | 12 |
1 files changed, 12 insertions, 0 deletions
diff --git a/ssl/s3_srvr.c b/ssl/s3_srvr.c index 154b6ada34..ccf81b8881 100644 --- a/ssl/s3_srvr.c +++ b/ssl/s3_srvr.c @@ -1652,7 +1652,19 @@ static int ssl3_get_client_certificate(SSL *s) if (s->session->peer != NULL) X509_free(s->session->peer); s->session->peer=sk_X509_shift(sk); + + /* FIXME: s->session->cert could be a SSL_CTX's struct cert_st! + * struct cert_st is used for too many purposes. It makes + * sense to use the same structure in both SSL_CTX and SSL, + * but then don't put any per-connection data in it. */ +#if 0 /* This could become a workaround, but it would still be utterly ugly */ + if (!ssl_cert_instantiate(&s->cert, s->ctx->default_cert)) + { + handle the error; + } +#endif s->session->cert->cert_chain=sk; + sk=NULL; ret=1; |