]> git.ipfire.org Git - thirdparty/openvpn.git/commit
Remove duplicate X509 env variables
authorSteffan Karger <steffan@karger.me>
Thu, 9 Mar 2017 08:13:32 +0000 (09:13 +0100)
committerGert Doering <gert@greenie.muc.de>
Wed, 15 Mar 2017 19:45:06 +0000 (20:45 +0100)
commitfd0361813cd3d5a55f3408a018e2ed776d79fef6
tree825a74ade9cb0b259d287d9cd44dc66040679db0
parent33e1a869fc6edb6bce5816b11dbecfaca57b20d4
Remove duplicate X509 env variables

Commit 13b585e8 added support for multiple X509 env variables with the
same name, but as a side effect caused these variables to pile up for
each renegotiation.  The old code would simply overwrite the old variables
(as long as an equally-long chain was used for the new session).

To stop the variables from piling up, this commit removes any old X509
env variables if we start negotiating a new TLS session.

Trac: #854

Signed-off-by: Steffan Karger <steffan@karger.me>
Acked-by: Gert Doering <gert@greenie.muc.de>
Message-Id: <1489047212-31994-1-git-send-email-steffan@karger.me>
URL: https://www.mail-archive.com/openvpn-devel@lists.sourceforge.net/msg14237.html
Signed-off-by: Gert Doering <gert@greenie.muc.de>
src/openvpn/ssl.c
src/openvpn/ssl_verify.c
src/openvpn/ssl_verify.h