projects / mech_eap.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 6da3b74) | patch
OpenSSL: Fix PKCS#12 extra certificate handling
authorJouni Malinen <j@w1.fi>
Mon, 10 Aug 2015 21:40:27 +0000 (00:40 +0300)
committerJouni Malinen <j@w1.fi>
Mon, 10 Aug 2015 22:27:00 +0000 (01:27 +0300)
commit0d2c0e67769639924ad2d2e37f7c7d7bee46188b
treed4511065faaa59c5215fade14dda43e3401f1e85tree | snapshot
parent6da3b745f196e33f594e285d8abc53ea217061aacommit | diff
OpenSSL: Fix PKCS#12 extra certificate handling

Previously, the possible extra certificate(s) from a PKCS#12 file was
added once for each authentication attempt. This resulted in OpenSSL
concatenating the certificates multiple time (add one copy for each try
during the wpa_supplicant process lifetime). Fix this by clearing the
extra chain certificates before adding new ones when using OpenSSL 1.0.1
or newer that include the needed function.

Signed-off-by: Jouni Malinen <j@w1.fi>
src/crypto/tls_openssl.c diff | blob | history
Moonshot GSS-API mechanism