vtls: deduplicate client certificates in ssl_config_data

Closes #5629
author: Gergely Nagy <ngg@tresorit.com> 2020-06-29 20:07:37 +0200
committer: Daniel Stenberg <daniel@haxx.se> 2020-09-14 12:56:47 +0200
commit: 182ff2d63c9a25c14ee1e7dc9e6d63e9079df677 (patch)
tree: 104daf62b1b7ca64beffcbbdbef127dbabed2063 /lib/vtls/nss.c
parent: 7ea2e1d0c5a7fc7e2797a2d3c2a2429d6e09e581 (diff)
download: curl-182ff2d63c9a25c14ee1e7dc9e6d63e9079df677.tar.gz
1 files changed, 4 insertions, 3 deletions
diff --git a/lib/vtls/nss.c b/lib/vtls/nss.c
index 25098814a..2aed10d1b 100644
--- a/lib/vtls/nss.c
+++ b/lib/vtls/nss.c
@@ -1981,14 +1981,15 @@ static CURLcode nss_setup_connect(struct connectdata *conn, int sockindex)
     infof(data, "  CRLfile: %s\n", SSL_SET_OPTION(CRLfile));
   }
 
-  if(SSL_SET_OPTION(cert)) {
-    char *nickname = dup_nickname(data, SSL_SET_OPTION(cert));
+  if(SSL_SET_OPTION(primary.clientcert)) {
+    char *nickname = dup_nickname(data, SSL_SET_OPTION(primary.clientcert));
     if(nickname) {
       /* we are not going to use libnsspem.so to read the client cert */
       backend->obj_clicert = NULL;
     }
     else {
-      CURLcode rv = cert_stuff(conn, sockindex, SSL_SET_OPTION(cert),
+      CURLcode rv = cert_stuff(conn, sockindex,
+                               SSL_SET_OPTION(primary.clientcert),
                                SSL_SET_OPTION(key));
       if(rv) {
         /* failf() is already done in cert_stuff() */
author	Gergely Nagy <ngg@tresorit.com>	2020-06-29 20:07:37 +0200
committer	Daniel Stenberg <daniel@haxx.se>	2020-09-14 12:56:47 +0200
commit	182ff2d63c9a25c14ee1e7dc9e6d63e9079df677 (patch)
tree	104daf62b1b7ca64beffcbbdbef127dbabed2063 /lib/vtls/nss.c
parent	7ea2e1d0c5a7fc7e2797a2d3c2a2429d6e09e581 (diff)
download	curl-182ff2d63c9a25c14ee1e7dc9e6d63e9079df677.tar.gz