Commit 77fa495f authored by raja-ashok's avatar raja-ashok Committed by Pauli
Browse files

Use allow_early_data_cb from SSL instead of SSL_CTX 



Reviewed-by: default avatarMatt Caswell <matt@openssl.org>
Reviewed-by: default avatarPaul Dale <paul.dale@oracle.com>
(Merged from https://github.com/openssl/openssl/pull/9471)

(cherry picked from commit 59b2cb2638dda3e07385ad36a41f0e141b36987b)
parent a5c83db4

ssl/statem/extensions.c

+3 −3
Original line number Diff line number Diff line
@@ -1648,9 +1648,9 @@ static int final_early_data(SSL *s, unsigned int context, int sent) 
            || s->early_data_state != SSL_EARLY_DATA_ACCEPTING

            || !s->ext.early_data_ok

            || s->hello_retry_request != SSL_HRR_NONE

            || (s->ctx->allow_early_data_cb != NULL

                && !s->ctx->allow_early_data_cb(s,

                                         s->ctx->allow_early_data_cb_data))) {

            || (s->allow_early_data_cb != NULL

                && !s->allow_early_data_cb(s,

                                         s->allow_early_data_cb_data))) {

        s->ext.early_data = SSL_EARLY_DATA_REJECTED;

    } else {

        s->ext.early_data = SSL_EARLY_DATA_ACCEPTED;