Rework SNI to fix memory issues

commit: 8372454615207dc701b0fa845a43e2793ad40d41 [log] [tgz]
author: Manuel Pégourié-Gonnard <mpg@elzevir.fr> Tue Sep 24 22:30:56 2013 +0200
committer: Manuel Pégourié-Gonnard <mpg@elzevir.fr> Tue Sep 24 22:30:56 2013 +0200
tree: 1a72489bd3ce43fe7e110c0d9dbd36f724558e2d
parent: b095a7bf290c9d78260ed94f8d33f0ce98f78f7e [diff] [blame]
diff --git a/include/polarssl/ssl.h b/include/polarssl/ssl.h
index d6db978..fb9a40c 100644
--- a/include/polarssl/ssl.h
+++ b/include/polarssl/ssl.h

@@ -493,8 +493,16 @@
     const ecp_curve_info **curves;      /*!<  Supported elliptic curves */
 #endif
 #if defined(POLARSSL_X509_CRT_PARSE_C)
-    ssl_key_cert *key_cert;             /*!<  Own key/cert in use     */
-    int free_key_cert;                  /*!<  Shall we free key_cert? */
+    /**
+     * Current key/cert or key/cert list.
+     * On client: pointer to ssl->key_cert, only the first entry used.
+     * On server: starts as a pointer to ssl->key_cert, then becomes
+     * a pointer to the chosen key from this list or the SNI list.
+     */
+    ssl_key_cert *key_cert;
+#if defined(POLARSSL_SSL_SERVER_NAME_INDICATION)
+    ssl_key_cert *sni_key_cert;         /*!<  key/cert list from SNI  */
+#endif
 #endif
 
     /*
commit	8372454615207dc701b0fa845a43e2793ad40d41	[log] [tgz]
author	Manuel Pégourié-Gonnard <mpg@elzevir.fr>	Tue Sep 24 22:30:56 2013 +0200
committer	Manuel Pégourié-Gonnard <mpg@elzevir.fr>	Tue Sep 24 22:30:56 2013 +0200
tree	1a72489bd3ce43fe7e110c0d9dbd36f724558e2d
parent	b095a7bf290c9d78260ed94f8d33f0ce98f78f7e [diff] [blame]