diff options
author | Dr. Stephen Henson <steve@openssl.org> | 2014-06-14 22:24:08 +0100 |
---|---|---|
committer | Dr. Stephen Henson <steve@openssl.org> | 2014-06-14 22:31:28 +0100 |
commit | 3b77f01702cbbb75c7718f876a2053d5a882fe89 (patch) | |
tree | 06a8a5e66c23d882a18a1dbb46959ea2a165157e /ssl | |
parent | ce00c64df9eb78402950e179b54e7745210b04f2 (diff) |
Accept CCS after sending finished.
Allow CCS after finished has been sent by client: at this point
keys have been correctly set up so it is OK to accept CCS from
server. Without this renegotiation can sometimes fail.
PR#3400
Diffstat (limited to 'ssl')
-rw-r--r-- | ssl/s3_clnt.c | 1 |
1 files changed, 1 insertions, 0 deletions
diff --git a/ssl/s3_clnt.c b/ssl/s3_clnt.c index cd43873e56..d009400891 100644 --- a/ssl/s3_clnt.c +++ b/ssl/s3_clnt.c @@ -550,6 +550,7 @@ int ssl3_connect(SSL *s) s->method->ssl3_enc->client_finished_label, s->method->ssl3_enc->client_finished_label_len); if (ret <= 0) goto end; + s->s3->flags |= SSL3_FLAGS_CCS_OK; s->state=SSL3_ST_CW_FLUSH; /* clear flags */ |