diff options
| author | Bob Beck <beck@cvs.openbsd.org> | 2016-11-06 16:55:17 +0000 |
|---|---|---|
| committer | Bob Beck <beck@cvs.openbsd.org> | 2016-11-06 16:55:17 +0000 |
| commit | d18745393c061cb2b8ea238a7e078ec7f8ce0f42 (patch) | |
| tree | fc18695ae000035c79f1d0918a3d8ad730597048 /lib | |
| parent | ba14fa7ba164aa7fd6b35e0159f2e9b47191c094 (diff) | |
Set the callback on the correct ssl_ctx for the SNI case, instead of
the master only.
ok jsing@
Diffstat (limited to 'lib')
| -rw-r--r-- | lib/libtls/tls_server.c | 4 |
1 files changed, 2 insertions, 2 deletions
diff --git a/lib/libtls/tls_server.c b/lib/libtls/tls_server.c index a9a5902addc..a3883315e79 100644 --- a/lib/libtls/tls_server.c +++ b/lib/libtls/tls_server.c @@ -1,4 +1,4 @@ -/* $OpenBSD: tls_server.c,v 1.30 2016/11/05 15:13:26 beck Exp $ */ +/* $OpenBSD: tls_server.c,v 1.31 2016/11/06 16:55:16 beck Exp $ */ /* * Copyright (c) 2014 Joel Sing <jsing@openbsd.org> * @@ -214,7 +214,7 @@ tls_configure_server_ssl(struct tls *ctx, SSL_CTX **ssl_ctx, if (ctx->config->ciphers_server == 1) SSL_CTX_set_options(*ssl_ctx, SSL_OP_CIPHER_SERVER_PREFERENCE); - if (SSL_CTX_set_tlsext_status_cb(ctx->ssl_ctx, tls_ocsp_stapling_cb) != 1) { + if (SSL_CTX_set_tlsext_status_cb(*ssl_ctx, tls_ocsp_stapling_cb) != 1) { tls_set_errorx(ctx, "failed to add OCSP stapling callback"); goto err; } |