Fix Kerberos issue in ssl_session_dup
The fix for CVE-2015-1791 introduced an error in ssl_session_dup for Kerberos. Reviewed-by: Tim Hudson <tjh@openssl.org>
This commit is contained in:
parent
80d586d97f
commit
dcad51bc13
@ -242,7 +242,7 @@ SSL_SESSION *ssl_session_dup(SSL_SESSION *src, int ticket)
|
|||||||
memcpy(dest, src, sizeof(*dest));
|
memcpy(dest, src, sizeof(*dest));
|
||||||
|
|
||||||
#ifndef OPENSSL_NO_KRB5
|
#ifndef OPENSSL_NO_KRB5
|
||||||
dest->krb5_client_princ_len = dest->krb5_client_princ_len;
|
dest->krb5_client_princ_len = src->krb5_client_princ_len;
|
||||||
if (src->krb5_client_princ_len > 0)
|
if (src->krb5_client_princ_len > 0)
|
||||||
memcpy(dest->krb5_client_princ, src->krb5_client_princ,
|
memcpy(dest->krb5_client_princ, src->krb5_client_princ,
|
||||||
src->krb5_client_princ_len);
|
src->krb5_client_princ_len);
|
||||||
|
Loading…
x
Reference in New Issue
Block a user