diff options
author | Gergely Nagy <ngg@tresorit.com> | 2020-06-29 20:07:37 +0200 |
---|---|---|
committer | Daniel Stenberg <daniel@haxx.se> | 2020-09-14 12:56:47 +0200 |
commit | 182ff2d63c9a25c14ee1e7dc9e6d63e9079df677 (patch) | |
tree | 104daf62b1b7ca64beffcbbdbef127dbabed2063 /lib/vtls/nss.c | |
parent | 7ea2e1d0c5a7fc7e2797a2d3c2a2429d6e09e581 (diff) | |
download | curl-182ff2d63c9a25c14ee1e7dc9e6d63e9079df677.tar.gz |
vtls: deduplicate client certificates in ssl_config_data
Closes #5629
Diffstat (limited to 'lib/vtls/nss.c')
-rw-r--r-- | lib/vtls/nss.c | 7 |
1 files changed, 4 insertions, 3 deletions
diff --git a/lib/vtls/nss.c b/lib/vtls/nss.c index 25098814a..2aed10d1b 100644 --- a/lib/vtls/nss.c +++ b/lib/vtls/nss.c @@ -1981,14 +1981,15 @@ static CURLcode nss_setup_connect(struct connectdata *conn, int sockindex) infof(data, " CRLfile: %s\n", SSL_SET_OPTION(CRLfile)); } - if(SSL_SET_OPTION(cert)) { - char *nickname = dup_nickname(data, SSL_SET_OPTION(cert)); + if(SSL_SET_OPTION(primary.clientcert)) { + char *nickname = dup_nickname(data, SSL_SET_OPTION(primary.clientcert)); if(nickname) { /* we are not going to use libnsspem.so to read the client cert */ backend->obj_clicert = NULL; } else { - CURLcode rv = cert_stuff(conn, sockindex, SSL_SET_OPTION(cert), + CURLcode rv = cert_stuff(conn, sockindex, + SSL_SET_OPTION(primary.clientcert), SSL_SET_OPTION(key)); if(rv) { /* failf() is already done in cert_stuff() */ |