Server Side Renegotiation

1. Fix testing issue with a client using the SCSV cipher suite to indicate desire for renegotiation. 2. Add indication to both the server and client examples that the renegotiation was successful.
2018-11-30 14:14:27 -08:00 · 2018-11-30 14:14:27 -08:00 · b145aab6b2
parent ec76ab7e42
commit b145aab6b2
3 changed files with 7 additions and 1 deletions
--- a/examples/client/client.c
+++ b/examples/client/client.c
@ -2780,6 +2780,9 @@ THREAD_RETURN WOLFSSL_THREAD client_test(void* args)
                wolfSSL_CTX_free(ctx); ctx = NULL;
                err_sys("wolfSSL_Rehandshake failed");
            }
+            else {
+                printf("RENEGOTIATION SUCCESSFUL\n");
+            }
        }
    }
 #endif /* HAVE_SECURE_RENEGOTIATION */
--- a/examples/server/server.c
+++ b/examples/server/server.c
@ -1995,7 +1995,9 @@ THREAD_RETURN WOLFSSL_THREAD server_test(void* args)
            } else {
                if (wolfSSL_Rehandshake(ssl) != WOLFSSL_SUCCESS) {
                    printf("not doing secure renegotiation\n");
-
+                }
+                else {
+                    printf("RENEGOTIATION SUCCESSFUL\n");
                }
            }
        }
--- a/src/internal.c
+++ b/src/internal.c
@ -23667,6 +23667,7 @@ static int DoSessionTicket(WOLFSSL* ssl, const byte* input, word32* inOutIdx,
            ret = TLSX_AddEmptyRenegotiationInfo(&ssl->extensions);
            if (ret != WOLFSSL_SUCCESS)
                return ret;
+            ssl->secure_renegotiation->enabled = 1;
        }
 #endif /* HAVE_SERVER_RENEGOTIATION_INFO */