generic-library/openssl
1
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity

Add support for magic cipher suite value (MCSV). Make secure renegotiation

Browse Source 
work in SSLv3: initial handshake has no extensions but includes MCSV, if
server indicates RI support then renegotiation handshakes include RI.

NB: current MCSV value is bogus for testing only, will be updated when we
have an official value.

Change mismatch alerts to handshake_failure as required by spec.

Also have some debugging fprintfs so we can clearly see what is going on
if OPENSSL_RI_DEBUG is set.
This commit is contained in:
Dr. Stephen Henson
2009-12-08 13:14:03 +00:00
parent 8025e25113
commit 13f6d57b1e
7 changed files with 62 additions and 15 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
ssl/s3_srvr.c
View File

@@ -1015,7 +1015,7 @@ int ssl3_get_client_hello(SSL *s)
#ifndef OPENSSL_NO_TLSEXT
/* TLS extensions*/
if (s->version > SSL3_VERSION)
if (s->version >= SSL3_VERSION)
{
if (!ssl_parse_clienthello_tlsext(s,&p,d,n, &al))
{