diff options
| author | markus <> | 2003-05-11 21:36:58 +0000 |
|---|---|---|
| committer | markus <> | 2003-05-11 21:36:58 +0000 |
| commit | 1c98a87f0daac81245653c227eb2f2508a22a965 (patch) | |
| tree | 3de6d603296ec563b936da4e6a8a1e33d48f8884 /src/lib/libssl/ssl_sess.c | |
| parent | 31392c89d1135cf2a416f97295f6d21681b3fbc4 (diff) | |
| download | openbsd-1c98a87f0daac81245653c227eb2f2508a22a965.tar.gz openbsd-1c98a87f0daac81245653c227eb2f2508a22a965.tar.bz2 openbsd-1c98a87f0daac81245653c227eb2f2508a22a965.zip | |
import 0.9.7b (without idea and rc5)
Diffstat (limited to '')
| -rw-r--r-- | src/lib/libssl/ssl_sess.c | 17 |
1 files changed, 10 insertions, 7 deletions
diff --git a/src/lib/libssl/ssl_sess.c b/src/lib/libssl/ssl_sess.c index ca1a7427be..fbc30b94e6 100644 --- a/src/lib/libssl/ssl_sess.c +++ b/src/lib/libssl/ssl_sess.c | |||
| @@ -309,9 +309,12 @@ int ssl_get_prev_session(SSL *s, unsigned char *session_id, int len) | |||
| 309 | if (copy) | 309 | if (copy) |
| 310 | CRYPTO_add(&ret->references,1,CRYPTO_LOCK_SSL_SESSION); | 310 | CRYPTO_add(&ret->references,1,CRYPTO_LOCK_SSL_SESSION); |
| 311 | 311 | ||
| 312 | /* The following should not return 1, otherwise, | 312 | /* Add the externally cached session to the internal |
| 313 | * things are very strange */ | 313 | * cache as well if and only if we are supposed to. */ |
| 314 | SSL_CTX_add_session(s->ctx,ret); | 314 | if(!(s->ctx->session_cache_mode & SSL_SESS_CACHE_NO_INTERNAL_STORE)) |
| 315 | /* The following should not return 1, otherwise, | ||
| 316 | * things are very strange */ | ||
| 317 | SSL_CTX_add_session(s->ctx,ret); | ||
| 315 | } | 318 | } |
| 316 | if (ret == NULL) | 319 | if (ret == NULL) |
| 317 | goto err; | 320 | goto err; |
| @@ -525,13 +528,13 @@ void SSL_SESSION_free(SSL_SESSION *ss) | |||
| 525 | 528 | ||
| 526 | CRYPTO_free_ex_data(CRYPTO_EX_INDEX_SSL_SESSION, ss, &ss->ex_data); | 529 | CRYPTO_free_ex_data(CRYPTO_EX_INDEX_SSL_SESSION, ss, &ss->ex_data); |
| 527 | 530 | ||
| 528 | memset(ss->key_arg,0,SSL_MAX_KEY_ARG_LENGTH); | 531 | OPENSSL_cleanse(ss->key_arg,sizeof ss->key_arg); |
| 529 | memset(ss->master_key,0,SSL_MAX_MASTER_KEY_LENGTH); | 532 | OPENSSL_cleanse(ss->master_key,sizeof ss->master_key); |
| 530 | memset(ss->session_id,0,SSL_MAX_SSL_SESSION_ID_LENGTH); | 533 | OPENSSL_cleanse(ss->session_id,sizeof ss->session_id); |
| 531 | if (ss->sess_cert != NULL) ssl_sess_cert_free(ss->sess_cert); | 534 | if (ss->sess_cert != NULL) ssl_sess_cert_free(ss->sess_cert); |
| 532 | if (ss->peer != NULL) X509_free(ss->peer); | 535 | if (ss->peer != NULL) X509_free(ss->peer); |
| 533 | if (ss->ciphers != NULL) sk_SSL_CIPHER_free(ss->ciphers); | 536 | if (ss->ciphers != NULL) sk_SSL_CIPHER_free(ss->ciphers); |
| 534 | memset(ss,0,sizeof(*ss)); | 537 | OPENSSL_cleanse(ss,sizeof(*ss)); |
| 535 | OPENSSL_free(ss); | 538 | OPENSSL_free(ss); |
| 536 | } | 539 | } |
| 537 | 540 | ||