BUG/MINOR: ssl: Fix external function in order not to return a pointer on an internal trash buffer. 'ssl_sock_get_common_name' applied to a connection was also renamed 'ssl_sock_get_remote_common_name'. Currently, this function is only used with protocol PROXYv2 to retrieve the client certificate's common name. A further usage could be to retrieve the server certificate's common name on an outgoing connection. (cherry picked from commit 0abf836ecb32767fa1f9ad598f3e236e073491bd)

commit: 4910098653e356f814924663b4ddf71c971a71d6 [log] [tgz]
author: Emeric Brun <ebrun@haproxy.com> Tue Jun 24 18:26:41 2014 +0200
committer: Willy Tarreau <w@1wt.eu> Tue Jun 24 22:40:02 2014 +0200
tree: 8a05dd96c1d58d87b46f2ebc020e3e5cdd36bb3d
parent: c1fbbd4a3dd480b4eebbd8b32ca6cdf08791477a [diff] [blame]
diff --git a/src/connection.c b/src/connection.c
index 0b154d8..20a911b 100644
--- a/src/connection.c
+++ b/src/connection.c

@@ -682,9 +682,8 @@
 				tlv->verify = htonl(ssl_sock_get_verify_result(remote));
 			}
 			if (srv->pp_opts & SRV_PP_V2_SSL_CN) {
-				value = ssl_sock_get_common_name(remote);
-				if (value) {
-					tlv_len = make_tlv(&buf[ret+ssl_tlv_len], (buf_len - ret - ssl_tlv_len), PP2_TYPE_SSL_CN, strlen(value), value);
+				if (ssl_sock_get_remote_common_name(remote, &trash) > 0) {
+					tlv_len = make_tlv(&buf[ret+ssl_tlv_len], (buf_len - ret - ssl_tlv_len), PP2_TYPE_SSL_CN, trash.len, trash.str);
 					ssl_tlv_len += tlv_len;
 				}
 			}
commit	4910098653e356f814924663b4ddf71c971a71d6	[log] [tgz]
author	Emeric Brun <ebrun@haproxy.com>	Tue Jun 24 18:26:41 2014 +0200
committer	Willy Tarreau <w@1wt.eu>	Tue Jun 24 22:40:02 2014 +0200
tree	8a05dd96c1d58d87b46f2ebc020e3e5cdd36bb3d
parent	c1fbbd4a3dd480b4eebbd8b32ca6cdf08791477a [diff] [blame]