wolfSSL/wolfssl
1
0
Fork 1
mirror of https://github.com/wolfSSL/wolfssl.git synced 2025-07-31 19:24:42 +02:00
Code Issues Packages Projects Releases Wiki Activity

Fix for session resumption to ensure use of the right cipher suite. ZD13297

Browse Source
This commit is contained in:
David Garske
2021-12-21 14:52:56 -08:00
parent f1f15f411f
commit a92fb0eb42
1 changed files with 11 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

10
src/internal.c
View File

@@ -29404,7 +29404,17 @@ static int DoSessionTicket(WOLFSSL* ssl, const byte* input, word32* inOutIdx,
} }
#endif #endif
if (ret == 0 && ssl->options.resuming) {
/* for resumption use the cipher suite from session */
ssl->options.cipherSuite0 = session->cipherSuite0;
ssl->options.cipherSuite = session->cipherSuite;
ret = SetCipherSpecs(ssl);
if (ret == 0) { if (ret == 0) {
ret = PickHashSigAlgo(ssl, clSuites->hashSigAlgo,
clSuites->hashSigAlgoSz);
}
}
else if (ret == 0) {
if (MatchSuite(ssl, clSuites) < 0) { if (MatchSuite(ssl, clSuites) < 0) {
WOLFSSL_MSG("Unsupported cipher suite, ClientHello"); WOLFSSL_MSG("Unsupported cipher suite, ClientHello");
ret = UNSUPPORTED_SUITE; ret = UNSUPPORTED_SUITE;