From 6cd7b5568ce306de755bc8fff3488feedf161901 Mon Sep 17 00:00:00 2001 From: Patrick McDermott Date: Tue, 30 Jul 2019 21:36:14 -0400 Subject: s_client: Enable secure renegotiation Although this causes a SIGSEGV in wolfSSL_X509_check_host(): #0 0x00007ffff7babca2 in wolfSSL_X509_check_host () from /usr/local/lib/libwolfssl.so.19 #1 0x0000555555555d3f in s_client (argc=0, argv=0x7fffffffe3b8) at src/s_client.c:382 #2 0x000055555555545a in main (argc=6, argv=0x7fffffffe388) at src/main.c:42 --- (limited to 'src') diff --git a/src/s_client.c b/src/s_client.c index 37d59fb..1a1da34 100644 --- a/src/s_client.c +++ b/src/s_client.c @@ -349,7 +349,13 @@ s_client(int argc, char **argv) #ifdef HAVE_SUPPORTED_CURVES use_curves(ctx) == false || #endif - (ssl = wolfSSL_new(ctx)) == NULL) { + (ssl = wolfSSL_new(ctx)) == NULL || +#if defined(HAVE_SECURE_RENEGOTIATION) || \ + defined(HAVE_SERVER_RENEGOTIATION_INFO) + wolfSSL_UseSecureRenegotiation(ssl) != + WOLFSSL_SUCCESS || +#endif + false) { fputs("Out of memory\n", stderr); goto error; } -- cgit v0.9.1