handshake: check SCSVs prior to resuming a session

This ensures that extensions which are also available as SCSVs are parsed prior to resuming a session. This resolves an issue with openssl sending SCSV instead of an extension for the safe renegotiation. Relates #259 Signed-off-by: Nikos Mavrogiannopoulos <nmav@redhat.com>
author: Nikos Mavrogiannopoulos <nmav@redhat.com> 2017-09-06 15:11:00 +0200
committer: Nikos Mavrogiannopoulos <nmav@redhat.com> 2017-09-07 14:39:21 +0200
commit: ac664b9e4b98c4c220b9fc21e080361141945697 (patch)
tree: fc0bd762cdcabf9a17ae9d7d3568cd72564bc6be /lib/sslv2_compat.c
parent: bc952033c60a45b14d0515fc30a7f65c22708a5c (diff)
download: gnutls-ac664b9e4b98c4c220b9fc21e080361141945697.tar.gz
1 files changed, 1 insertions, 1 deletions
diff --git a/lib/sslv2_compat.c b/lib/sslv2_compat.c
index 4f4b8f39fa..2887550255 100644
--- a/lib/sslv2_compat.c
+++ b/lib/sslv2_compat.c
@@ -74,7 +74,7 @@ _gnutls_handshake_select_v2_suite(gnutls_session_t session,
 		}
 	}
 
-	ret = _gnutls_server_select_suite(session, _data, _datalen);
+	ret = _gnutls_server_select_suite(session, _data, _datalen, 0);
 	gnutls_free(_data);
 
 	return ret;
author	Nikos Mavrogiannopoulos <nmav@redhat.com>	2017-09-06 15:11:00 +0200
committer	Nikos Mavrogiannopoulos <nmav@redhat.com>	2017-09-07 14:39:21 +0200
commit	ac664b9e4b98c4c220b9fc21e080361141945697 (patch)
tree	fc0bd762cdcabf9a17ae9d7d3568cd72564bc6be /lib/sslv2_compat.c
parent	bc952033c60a45b14d0515fc30a7f65c22708a5c (diff)
download	gnutls-ac664b9e4b98c4c220b9fc21e080361141945697.tar.gz