Imported Upstream version 2.3.4upstream/2.3.4

author: Alberto Gonzalez Iniesta <agi@inittab.org> 2014-09-02 12:20:00 +0200
committer: Alberto Gonzalez Iniesta <agi@inittab.org> 2014-09-02 12:20:00 +0200
commit: 809daf3b371e0c2457b5d4bd414382eb67bf8348 (patch)
tree: d5c82a6442126ce99f8d569f6bca574433487f4b /src/openvpn/ssl_verify.c
parent: 0af7f64094c65cba7ee45bd2679e6826bcf598cb (diff)
1 files changed, 7 insertions, 2 deletions
diff --git a/src/openvpn/ssl_verify.c b/src/openvpn/ssl_verify.c
index 0670f2a..c90c2c3 100644
--- a/src/openvpn/ssl_verify.c
+++ b/src/openvpn/ssl_verify.c
@@ -435,10 +435,15 @@ verify_cert_set_env(struct env_set *es, openvpn_x509_cert_t *peer_cert, int cert
   }
 
   /* export serial number as environmental variable */
-  serial = x509_get_serial(peer_cert, &gc);
+  serial = backend_x509_get_serial(peer_cert, &gc);
   openvpn_snprintf (envname, sizeof(envname), "tls_serial_%d", cert_depth);
   setenv_str (es, envname, serial);
 
+  /* export serial number in hex as environmental variable */
+  serial = backend_x509_get_serial_hex(peer_cert, &gc);
+  openvpn_snprintf (envname, sizeof(envname), "tls_serial_hex_%d", cert_depth);
+  setenv_str (es, envname, serial);
+
   gc_free(&gc);
 }
 
@@ -562,7 +567,7 @@ verify_check_crl_dir(const char *crl_dir, openvpn_x509_cert_t *cert)
   int fd = -1;
   struct gc_arena gc = gc_new();
 
-  char *serial = x509_get_serial(cert, &gc);
+  char *serial = backend_x509_get_serial(cert, &gc);
 
   if (!openvpn_snprintf(fn, sizeof(fn), "%s%c%s", crl_dir, OS_SPECIFIC_DIRSEP, serial))
     {
author	Alberto Gonzalez Iniesta <agi@inittab.org>	2014-09-02 12:20:00 +0200
committer	Alberto Gonzalez Iniesta <agi@inittab.org>	2014-09-02 12:20:00 +0200
commit	809daf3b371e0c2457b5d4bd414382eb67bf8348 (patch)
tree	d5c82a6442126ce99f8d569f6bca574433487f4b /src/openvpn/ssl_verify.c
parent	0af7f64094c65cba7ee45bd2679e6826bcf598cb (diff)