Fix session resumption

Commit f0348c842e7 introduced a problem with session resumption. The version for the session is fixed when the session is created. By moving the creation of the session earlier in the process the version is fixed *before* version negotiation has completed when processing the ServerHello on the client side. This fix updates the session version after version neg has completed. Reviewed-by: Emilia Käsper <emilia@openssl.org>
2015-08-05 13:33:52 +01:00 · 2015-08-05 13:33:52 +01:00 · dc0c888811
commit dc0c888811
parent 9a931208d7
1 changed files with 2 additions and 0 deletions
--- a/ssl/s23_clnt.c
+++ b/ssl/s23_clnt.c
@ -736,6 +736,8 @@ static int ssl23_get_server_hello(SSL *s)
            goto err;
        }

+        s->session->ssl_version = s->version;
+
        /* ensure that TLS_MAX_VERSION is up-to-date */
        OPENSSL_assert(s->version <= TLS_MAX_VERSION);