Merge branch 'maint'

author: Ingela Anderton Andin <[email protected]> 2017-10-17 16:22:00 +0200
committer: Ingela Anderton Andin <[email protected]> 2017-10-17 16:22:00 +0200
commit: 30c3930fb296f46bac334cb6a5856a747984f69d (patch)
tree: c34f0cc000246bbbde8ebb1ea55794cc227844c7 /lib/ssl/src/ssl_connection.erl
parent: 5b696724cc894691da09bef0675dde5e2c0adaa9 (diff)
parent: 290c920aca365968ebaa10a63e25fd2579bce408 (diff)
download: otp-30c3930fb296f46bac334cb6a5856a747984f69d.tar.gz
otp-30c3930fb296f46bac334cb6a5856a747984f69d.tar.bz2
otp-30c3930fb296f46bac334cb6a5856a747984f69d.zip
1 files changed, 9 insertions, 2 deletions
diff --git a/lib/ssl/src/ssl_connection.erl b/lib/ssl/src/ssl_connection.erl
index 56ba952e67..d83c9cb59f 100644
--- a/lib/ssl/src/ssl_connection.erl
+++ b/lib/ssl/src/ssl_connection.erl
@@ -511,12 +511,13 @@ certify(internal, #certificate{},
 certify(internal, #certificate{} = Cert,
         #state{negotiated_version = Version,
 	       role = Role,
+               host = Host,
 	       cert_db = CertDbHandle,
 	       cert_db_ref = CertDbRef,
 	       crl_db = CRLDbInfo,
 	       ssl_options = Opts} = State, Connection) ->
     case ssl_handshake:certify(Cert, CertDbHandle, CertDbRef, 
-			       Opts, CRLDbInfo, Role) of
+			       Opts, CRLDbInfo, Role, Host) of
         {PeerCert, PublicKeyInfo} ->
 	    handle_peer_cert(Role, PeerCert, PublicKeyInfo,
 			     State#state{client_certificate_requested = false}, Connection);
@@ -725,6 +726,7 @@ cipher(internal, #finished{verify_data = Data} = Finished,
 	      expecting_finished = true,
 	      session = #session{master_secret = MasterSecret}
 	      = Session0,
+              ssl_options = SslOpts,
 	      connection_states = ConnectionStates0,
 	      tls_handshake_history = Handshake0} = State, Connection) ->
     case ssl_handshake:verify_connection(ssl:tls_version(Version), Finished,
@@ -732,7 +734,7 @@ cipher(internal, #finished{verify_data = Data} = Finished,
 					 get_current_prf(ConnectionStates0, read),
 					 MasterSecret, Handshake0) of
         verified ->
-	    Session = register_session(Role, Host, Port, Session0),
+	    Session = register_session(Role, host_id(Role, Host, SslOpts), Port, Session0),
 	    cipher_role(Role, Data, Session, 
 			State#state{expecting_finished = false}, Connection);
         #alert{} = Alert ->
@@ -2336,6 +2338,11 @@ register_session(server, _, Port, #session{is_resumable = new} = Session0) ->
 register_session(_, _, _, Session) ->
     Session. %% Already registered
 
+host_id(client, _Host, #ssl_options{server_name_indication = Hostname}) when is_list(Hostname) ->
+    Hostname;
+host_id(_, Host, _) ->
+    Host.
+
 handle_new_session(NewId, CipherSuite, Compression, 
 		   #state{session = Session0,
 			  protocol_cb = Connection} = State0) ->
author	Ingela Anderton Andin <[email protected]>	2017-10-17 16:22:00 +0200
committer	Ingela Anderton Andin <[email protected]>	2017-10-17 16:22:00 +0200
commit	30c3930fb296f46bac334cb6a5856a747984f69d (patch)
tree	c34f0cc000246bbbde8ebb1ea55794cc227844c7 /lib/ssl/src/ssl_connection.erl
parent	5b696724cc894691da09bef0675dde5e2c0adaa9 (diff)
parent	290c920aca365968ebaa10a63e25fd2579bce408 (diff)
download	otp-30c3930fb296f46bac334cb6a5856a747984f69d.tar.gz otp-30c3930fb296f46bac334cb6a5856a747984f69d.tar.bz2 otp-30c3930fb296f46bac334cb6a5856a747984f69d.zip