Make tls_session_secret_cb work with CVE-2014-0224 fix.

If application uses tls_session_secret_cb for session resumption set the CCS_OK flag. (Imported from upstream's a21f350a76b34b66dcaf9c1676baec945f32e980)
2014-06-20 12:00:00 -07:00 · 2014-06-20 12:00:00 -07:00 · 6acf476eb6
commit 6acf476eb6
parent bed2214b3e
1 changed files with 1 additions and 0 deletions
--- a/ssl/s3_clnt.c
+++ b/ssl/s3_clnt.c
@ -1036,6 +1036,7 @@ int ssl3_get_server_hello(SSL *s)
 			{
 			s->session->cipher = pref_cipher ?
 				pref_cipher : ssl_get_cipher_by_char(s, p+j);
+	    		s->s3->flags |= SSL3_FLAGS_CCS_OK;
 			}
 		}
 #endif /* OPENSSL_NO_TLSEXT */