On Fri, Nov 20, 2009 at 05:42:16PM +0100, Dr. Stephen Henson wrote: > > OK, we are currently doing the wrong thing according to the specs. For TLS a > no renegotiation alert can be sent but no such thing exists for SSLv3. However > OpenSSL currently doesn't handle this alert properly client side, it just > ignores it and carries on waiting for a server hello which it will never get. > > The attached patch should send a non renegotiation alert from the server. > Please test it and let me know if renegotiating clients (but not OpenSSL ones) > are now happier.
This seems to work with the one cellphone I have handy which exhibited the problem before. But not working with older versions of OpenSSL is a pain, eh? I guess the question is how much client software there may be ou there which is linked to older versions of OpenSSL and initiates renegotiations without user intervention. Honestly, I haven't a clue. I guess this wouldn't impact the server-initiated renegotiations used by mod_ssl for per-directory authentication, so the one way a popular web browser (isn't Safari linked to OpenSSL) might lose seems like it, at least, won't happen. Thor ______________________________________________________________________ OpenSSL Project http://www.openssl.org Development Mailing List [email protected] Automated List Manager [email protected]
