Bug 1202264, wrong re-use of a session cache entry, r=rrelyea
authorElio Maldonado <emaldona@redhat.com>
Wed, 03 Feb 2016 14:17:33 +0100
changeset 11836 bf8a54155531b6a8d9d888ed52ee4485cb37ab3f
parent 11835 887332f51c8ddafbf287fddfbb78ce9cfdb62808
child 11837 bb0af418ea3d64b095aee0d97392fc648f61561b
push id950
push userkaie@kuix.de
push dateWed, 03 Feb 2016 13:17:42 +0000
reviewersrrelyea
bugs1202264
Bug 1202264, wrong re-use of a session cache entry, r=rrelyea
lib/ssl/sslnonce.c
--- a/lib/ssl/sslnonce.c
+++ b/lib/ssl/sslnonce.c
@@ -282,19 +282,17 @@ ssl_LookupSID(const PRIPv6Addr *addr, PR
 		   (((peerID == NULL) && (sid->peerID == NULL)) ||
 		    ((peerID != NULL) && (sid->peerID != NULL) &&
 		     PORT_Strcmp(sid->peerID, peerID) == 0)) &&
 		   /* is cacheable */
 		   (sid->version < SSL_LIBRARY_VERSION_3_0 ||
 		    sid->u.ssl3.keys.resumable) &&
 		   /* server hostname matches. */
 	           (sid->urlSvrName != NULL) &&
-		   ((0 == PORT_Strcmp(urlSvrName, sid->urlSvrName)) ||
-		    ((sid->peerCert != NULL) && (SECSuccess == 
-		      CERT_VerifyCertName(sid->peerCert, urlSvrName))) )
+		   (0 == PORT_Strcmp(urlSvrName, sid->urlSvrName))
 		  ) {
 	    /* Hit */
 	    sid->lastAccessTime = now;
 	    sid->references++;
 	    break;
 	} else {
 	    sidp = &sid->next;
 	}