projects / openssl.git / commitdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | patch | inline | side by side (parent: 598b562)
PR: 2144
authorDr. Stephen Henson <steve@openssl.org>
Sat, 16 Jan 2010 19:46:10 +0000 (19:46 +0000)
committerDr. Stephen Henson <steve@openssl.org>
Sat, 16 Jan 2010 19:46:10 +0000 (19:46 +0000)
Submitted by: steve@openssl.org

Fix DTLS connection so new_session is reset if we read second client hello:
new_session is used to detect renegotiation.

ssl/d1_srvr.c patch | blob | history

diff --git a/ssl/d1_srvr.c b/ssl/d1_srvr.c
index fb64d49166c0b68c3010a3f2a9463a6ae3299c99..f79efe53b75f57b42146f6f9d19c0d93210574cd 100644 (file)
--- a/ssl/d1_srvr.c
+++ b/ssl/d1_srvr.c
@@ -292,6 +292,7 @@ int dtls1_accept(SSL *s)
                        ret = dtls1_send_hello_verify_request(s);
                        if ( ret <= 0) goto end;
                        s->state=SSL3_ST_SW_FLUSH;
+                       s->new_session = 0;
                        s->s3->tmp.next_state=SSL3_ST_SR_CLNT_HELLO_A;
 
                        /* HelloVerifyRequest resets Finished MAC */
Unnamed repository; edit this file 'description' to name the repository.