From 8d39d2800a17590be567ef9c5105605f1ce64d24 Mon Sep 17 00:00:00 2001 From: "Dr. Stephen Henson" Date: Sat, 16 Jan 2010 19:46:10 +0000 Subject: [PATCH] PR: 2144 Submitted by: steve@openssl.org Fix DTLS connection so new_session is reset if we read second client hello: new_session is used to detect renegotiation. --- ssl/d1_srvr.c | 1 + 1 file changed, 1 insertion(+) diff --git a/ssl/d1_srvr.c b/ssl/d1_srvr.c index fb64d49166..f79efe53b7 100644 --- a/ssl/d1_srvr.c +++ b/ssl/d1_srvr.c @@ -292,6 +292,7 @@ int dtls1_accept(SSL *s) ret = dtls1_send_hello_verify_request(s); if ( ret <= 0) goto end; s->state=SSL3_ST_SW_FLUSH; + s->new_session = 0; s->s3->tmp.next_state=SSL3_ST_SR_CLNT_HELLO_A; /* HelloVerifyRequest resets Finished MAC */ -- 2.25.1