From: Dr. Stephen Henson Date: Sat, 16 Jan 2010 19:45:46 +0000 (+0000) Subject: PR: 2144 X-Git-Tag: OpenSSL_0_9_8m-beta1~9 X-Git-Url: https://git.librecmc.org/?a=commitdiff_plain;h=aae48de0f71b76a0ccbb7e0eedc3946dde7e63e1;p=oweals%2Fopenssl.git PR: 2144 Submitted by: steve@openssl.org Fix DTLS connection so new_session is reset if we read second client hello: new_session is used to detect renegotiation. --- diff --git a/ssl/d1_srvr.c b/ssl/d1_srvr.c index 748bd86af4..a7a9599d0f 100644 --- a/ssl/d1_srvr.c +++ b/ssl/d1_srvr.c @@ -290,6 +290,7 @@ int dtls1_accept(SSL *s) ret = dtls1_send_hello_verify_request(s); if ( ret <= 0) goto end; s->state=SSL3_ST_SW_FLUSH; + s->new_session = 0; s->s3->tmp.next_state=SSL3_ST_SR_CLNT_HELLO_A; /* HelloVerifyRequests resets Finished MAC */