diff options
author | Nikos Mavrogiannopoulos | 2009-06-30 18:42:11 +0000 |
---|---|---|
committer | Nokis Mavrogiannopoulos | 2009-06-30 18:42:11 +0000 |
commit | c38a4e93e8f815dfd900f0b7058de5f183a34d1a (patch) | |
tree | 8b0ee17430f8eeff923e60b26786ce4322ec52d9 /src/gnutls_hooks.c | |
parent | 1c90c184b5bc87f18a0a2c09af4e1a38c6abd179 (diff) |
Avoid requesting certificate from client when we already have it. Patch by AlainKnaff.
Diffstat (limited to 'src/gnutls_hooks.c')
-rw-r--r-- | src/gnutls_hooks.c | 6 |
1 files changed, 6 insertions, 0 deletions
diff --git a/src/gnutls_hooks.c b/src/gnutls_hooks.c index d761b56..ea59bbf 100644 --- a/src/gnutls_hooks.c +++ b/src/gnutls_hooks.c | |||
@@ -808,6 +808,12 @@ int mgs_hook_authz(request_rec * r) | |||
808 | ctxt->sc->client_verify_mode, | 808 | ctxt->sc->client_verify_mode, |
809 | dc->client_verify_mode); | 809 | dc->client_verify_mode); |
810 | 810 | ||
811 | /* If we already have a client certificate, there's no point in | ||
812 | * re-handshaking... */ | ||
813 | rv = mgs_cert_verify(r, ctxt); | ||
814 | if (rv != DECLINED && rv != HTTP_FORBIDDEN) | ||
815 | return rv; | ||
816 | |||
811 | gnutls_certificate_server_set_request(ctxt->session, | 817 | gnutls_certificate_server_set_request(ctxt->session, |
812 | dc->client_verify_mode); | 818 | dc->client_verify_mode); |
813 | 819 | ||