Do not allow dropping Extended Master Secret extension on renegotiaton

Abort renegotiation if server receives client hello with Extended Master Secret extension dropped in comparison to the initial session. Fixes #9754 Reviewed-by: Matt Caswell <matt@openssl.org> (Merged from https://github.com/openssl/openssl/pull/12099)
author: Tomas Mraz <tmraz@fedoraproject.org> 2020-06-04 11:40:29 +0200
committer: Tomas Mraz <tmraz@fedoraproject.org> 2020-06-11 09:07:28 +0200
commit: 4b7097025305b219694dd8b04f84155cd12fb71d (patch)
tree: fdc4ebd34760e73c48f7906224481bd1a5371c4a /include
parent: 5bd03afcbe6e6fd7dba2d85d5c67a5a0140b4a7d (diff)
download: openssl-new-4b7097025305b219694dd8b04f84155cd12fb71d.tar.gz
1 files changed, 3 insertions, 0 deletions
diff --git a/include/openssl/ssl3.h b/include/openssl/ssl3.h
index 8d01fcc487..407db0b5f0 100644
--- a/include/openssl/ssl3.h
+++ b/include/openssl/ssl3.h
@@ -292,6 +292,9 @@ extern "C" {
 
 # define TLS1_FLAGS_STATELESS                    0x0800
 
+/* Set if extended master secret extension required on renegotiation */
+# define TLS1_FLAGS_REQUIRED_EXTMS               0x1000
+
 # define SSL3_MT_HELLO_REQUEST                   0
 # define SSL3_MT_CLIENT_HELLO                    1
 # define SSL3_MT_SERVER_HELLO                    2
author	Tomas Mraz <tmraz@fedoraproject.org>	2020-06-04 11:40:29 +0200
committer	Tomas Mraz <tmraz@fedoraproject.org>	2020-06-11 09:07:28 +0200
commit	4b7097025305b219694dd8b04f84155cd12fb71d (patch)
tree	fdc4ebd34760e73c48f7906224481bd1a5371c4a /include
parent	5bd03afcbe6e6fd7dba2d85d5c67a5a0140b4a7d (diff)
download	openssl-new-4b7097025305b219694dd8b04f84155cd12fb71d.tar.gz