Home Explore Help
Sign In
piros
/
tor
3
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Browse Source

Merge remote-tracking branch 'public/bug4591'

Nick Mathewson 12 years ago
parent
0b1a334842 f0212197cc
commit
62f8e3926d
2 changed files with 9 additions and 1 deletions
Split View Show Diff Stats
  1. 6 0
      changes/bug4591
  2. 3 1
      src/common/tortls.c

+ 6 - 0
changes/bug4591
View File 

@@ -0,0 +1,6 @@
 
+  o Minor bugfixes:
 
+    - If the client fails to set a reasonable set of ciphersuites
 
+      during its v2 handshake renegotiation, allow the renegotiation
 
+      to continue nevertheless (i.e., send all the required
 
+      certificates). Fix for bug 4591; bugfix on 0.2.0.20-rc.
 
+

+ 3 - 1
src/common/tortls.c
View File 

@@ -1370,7 +1370,9 @@ tor_tls_server_info_callback(const SSL *ssl, int type, int val)
 
 
   /* Now check the cipher list. */
 
   if (tor_tls_client_is_using_v2_ciphers(ssl, ADDR(tls))) {
 
-    /*XXXX_TLS keep this from happening more than once! */
 
+    if (tls->wasV2Handshake)
 
+      return; /* We already turned this stuff off for the first handshake;
 
+               * This is a renegotiation. */
 
 
     /* Yes, we're casting away the const from ssl.  This is very naughty of us.
 
      * Let's hope openssl doesn't notice! */