From: Himanshu Gupta <higupt@microsoft.com>
Date: Mon, 31 Aug 2020 19:35:35 +0000 (+0000)
Subject: wolfssl: add SECURE_RENEGOTIATION support
X-Git-Tag: curl-7_75_0~145
X-Git-Url: http://git.ipfire.org/cgi-bin/gitweb.cgi?a=commitdiff_plain;h=f927f38f1e6cc5e4b9981ebc83135e86737b5432;p=thirdparty%2Fcurl.git

wolfssl: add SECURE_RENEGOTIATION support

Closes #6411
---

diff --git a/lib/vtls/wolfssl.c b/lib/vtls/wolfssl.c
index 3ac1a8a77a..affbba33a4 100644
--- a/lib/vtls/wolfssl.c
+++ b/lib/vtls/wolfssl.c
@@ -505,6 +505,13 @@ wolfssl_connect_step1(struct connectdata *conn,
   }
 #endif /* OPENSSL_EXTRA */
 
+#ifdef HAVE_SECURE_RENEGOTIATION
+  if(wolfSSL_UseSecureRenegotiation(backend->handle) != SSL_SUCCESS) {
+    failf(data, "SSL: failed setting secure renegotiation");
+    return CURLE_SSL_CONNECT_ERROR;
+  }
+#endif /* HAVE_SECURE_RENEGOTIATION */
+
   /* Check if there's a cached ID we can/should use here! */
   if(SSL_SET_OPTION(primary.sessionid)) {
     void *ssl_sessionid = NULL;