diff options
| author | Dr. Stephen Henson <steve@openssl.org> | 2009-12-08 13:14:03 +0000 |
|---|---|---|
| committer | Dr. Stephen Henson <steve@openssl.org> | 2009-12-08 13:14:03 +0000 |
| commit | 13f6d57b1ef964f2b9cbd8f68783884caef0e5cb (patch) | |
| tree | 0e8b01c5c5428bc3aa4a9f56ed3e7f1b9ed11b1c /ssl/s3_clnt.c | |
| parent | 8025e2511381152bbe517c1819922ead5bd106e6 (diff) | |
| download | openssl-13f6d57b1ef964f2b9cbd8f68783884caef0e5cb.zip openssl-13f6d57b1ef964f2b9cbd8f68783884caef0e5cb.tar.gz openssl-13f6d57b1ef964f2b9cbd8f68783884caef0e5cb.tar.bz2 | |
Add support for magic cipher suite value (MCSV). Make secure renegotiation
work in SSLv3: initial handshake has no extensions but includes MCSV, if
server indicates RI support then renegotiation handshakes include RI.
NB: current MCSV value is bogus for testing only, will be updated when we
have an official value.
Change mismatch alerts to handshake_failure as required by spec.
Also have some debugging fprintfs so we can clearly see what is going on
if OPENSSL_RI_DEBUG is set.
Diffstat (limited to 'ssl/s3_clnt.c')
| -rw-r--r-- | ssl/s3_clnt.c | 2 |
1 files changed, 1 insertions, 1 deletions
diff --git a/ssl/s3_clnt.c b/ssl/s3_clnt.c index 44f09b8..3d40ba4 100644 --- a/ssl/s3_clnt.c +++ b/ssl/s3_clnt.c @@ -912,7 +912,7 @@ int ssl3_get_server_hello(SSL *s) #ifndef OPENSSL_NO_TLSEXT /* TLS extensions*/ - if (s->version > SSL3_VERSION) + if (s->version >= SSL3_VERSION) { if (!ssl_parse_serverhello_tlsext(s,&p,d,n, &al)) { |