From 6cd7b5568ce306de755bc8fff3488feedf161901 Mon Sep 17 00:00:00 2001
From: Patrick McDermott <patrick.mcdermott@libiquity.com>
Date: Tue, 30 Jul 2019 21:36:14 -0400
Subject: s_client: Enable secure renegotiation

Although this causes a SIGSEGV in wolfSSL_X509_check_host():

	#0  0x00007ffff7babca2 in wolfSSL_X509_check_host () from /usr/local/lib/libwolfssl.so.19
	#1  0x0000555555555d3f in s_client (argc=0, argv=0x7fffffffe3b8) at src/s_client.c:382
	#2  0x000055555555545a in main (argc=6, argv=0x7fffffffe388) at src/main.c:42
---
(limited to 'src')

diff --git a/src/s_client.c b/src/s_client.c
index 37d59fb..1a1da34 100644
--- a/src/s_client.c
+++ b/src/s_client.c
@@ -349,7 +349,13 @@ s_client(int argc, char **argv)
 #ifdef HAVE_SUPPORTED_CURVES
 			use_curves(ctx) == false ||
 #endif
-			(ssl = wolfSSL_new(ctx)) == NULL) {
+			(ssl = wolfSSL_new(ctx)) == NULL ||
+#if defined(HAVE_SECURE_RENEGOTIATION) || \
+	defined(HAVE_SERVER_RENEGOTIATION_INFO)
+			wolfSSL_UseSecureRenegotiation(ssl) !=
+				WOLFSSL_SUCCESS ||
+#endif
+			false) {
 		fputs("Out of memory\n", stderr);
 		goto error;
 	}
--
cgit v0.9.1