Commit 9d3dde37 authored by Michael Kaufmann's avatar Michael Kaufmann
Browse files

vtls: compare and clone ssl configs properly

Compare these settings in Curl_ssl_config_matches():
- random_file (CURLOPT_RANDOM_FILE)

Also copy the setting "verifystatus" in Curl_clone_primary_ssl_config(),
and copy the setting "sessionid" unconditionally.

This means that reusing connections that are secured with a client
certificate is now possible, and the statement "TLS session resumption
is disabled when a client certificate is used" in the old advisory at is obsolete.

Reviewed-by: Daniel Stenberg

Closes #1917
parent c4ebd8b4
Supports Markdown
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment