From aae48de0f71b76a0ccbb7e0eedc3946dde7e63e1 Mon Sep 17 00:00:00 2001
From: "Dr. Stephen Henson" <steve@openssl.org>
Date: Sat, 16 Jan 2010 19:45:46 +0000
Subject: [PATCH] PR: 2144 Submitted by: steve@openssl.org

Fix DTLS connection so new_session is reset if we read second client hello:
new_session is used to detect renegotiation.
---
 ssl/d1_srvr.c | 1 +
 1 file changed, 1 insertion(+)

diff --git a/ssl/d1_srvr.c b/ssl/d1_srvr.c
index 748bd86af4..a7a9599d0f 100644
--- a/ssl/d1_srvr.c
+++ b/ssl/d1_srvr.c
@@ -290,6 +290,7 @@ int dtls1_accept(SSL *s)
 			ret = dtls1_send_hello_verify_request(s);
 			if ( ret <= 0) goto end;
 			s->state=SSL3_ST_SW_FLUSH;
+			s->new_session = 0;
 			s->s3->tmp.next_state=SSL3_ST_SR_CLNT_HELLO_A;
 
 			/* HelloVerifyRequests resets Finished MAC */
-- 
2.34.1