wolfSSL/wolfssl
1
0
Fork 1
mirror of https://github.com/wolfSSL/wolfssl.git synced 2025-07-29 18:27:29 +02:00
Code Issues Packages Projects Releases Wiki Activity

Merge pull request #6762 from jpbland1/ocsp-chain-count-retry

Browse Source 
stop DoCertificate from reseting the cert chain
This commit is contained in:
John Bland
2023-09-12 21:42:09 -04:00
committed by GitHub
parent 86755dc7e4 6c8eaf26f5
commit eda3cd6a37
1 changed files with 10 additions and 4 deletions
Download Patch File Download Diff File Expand all files Collapse all files

14
src/internal.c
View File

@ -15237,11 +15237,17 @@ static int DoCertificate(WOLFSSL* ssl, byte* input, word32* inOutIdx,
WOLFSSL_ENTER("DoCertificate");
#ifdef SESSION_CERTS
/* Reset the session cert chain count in case the session resume failed. */
ssl->session->chain.count = 0;
#ifdef WOLFSSL_ALT_CERT_CHAINS
/* Reset the session cert chain count in case the session resume failed,
* do not reset if we are resuming after an async wait */
#if defined(WOLFSSL_ASYNC_CRYPT) || defined(WOLFSSL_NONBLOCK_OCSP)
if (ssl->error != OCSP_WANT_READ && ssl->error != WC_PENDING_E)
#endif
{
ssl->session->chain.count = 0;
#ifdef WOLFSSL_ALT_CERT_CHAINS
ssl->session->altChain.count = 0;
#endif
#endif
}
#endif /* SESSION_CERTS */
ret = ProcessPeerCerts(ssl, input, inOutIdx, size);