Make tls_session_secret_cb work with CVE-2014-0224 fix.
[openssl.git] / ssl / s3_clnt.c
index 34efff8c73904b977d2d9b3090dafa51f2f99d28..cd43873e56ee435246a689a5b88af82f5bf07f43 100644 (file)
@@ -1037,6 +1037,7 @@ int ssl3_get_server_hello(SSL *s)
                        {
                        s->session->cipher = pref_cipher ?
                                pref_cipher : ssl_get_cipher_by_char(s, p+j);
+                       s->s3->flags |= SSL3_FLAGS_CCS_OK;
                        }
                }
 #endif /* OPENSSL_NO_TLSEXT */