feedc0de/wolfssl
1
0
Fork 0
forked from wolfSSL/wolfssl
Code Pull Requests Activity

add NO_FORCE_SCR_SAME_SUITE flag for scr

Browse Source
This commit is contained in:
toddouska
2014-10-09 11:10:40 -07:00
parent 5019eab073
commit 159abadd73
1 changed files with 10 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

11
src/ssl.c
View File

@@ -736,7 +736,7 @@ int CyaSSL_UseSecureRenegotiation(CYASSL* ssl)
} }
/* do a secure renegotiation handshake, use forced, we discourage */ /* do a secure renegotiation handshake, user forced, we discourage */
int CyaSSL_Rehandshake(CYASSL* ssl) int CyaSSL_Rehandshake(CYASSL* ssl)
{ {
int ret; int ret;
@@ -759,6 +759,15 @@ int CyaSSL_Rehandshake(CYASSL* ssl)
return SECURE_RENEGOTIATION_E; return SECURE_RENEGOTIATION_E;
} }
#ifndef NO_FORCE_SCR_SAME_SUITE
/* force same suite */
if (ssl->suites) {
ssl->suites->suiteSz = SUITE_LEN;
ssl->suites->suites[0] = ssl->options.cipherSuite0;
ssl->suites->suites[1] = ssl->options.cipherSuite;
}
#endif
/* reset handshake states */ /* reset handshake states */
ssl->options.serverState = NULL_STATE; ssl->options.serverState = NULL_STATE;
ssl->options.clientState = NULL_STATE; ssl->options.clientState = NULL_STATE;