ssl: Fix renegotiation with new TLS sender

Wtite connection state was not synchronized when peer initiated renegotiation
author: Ingela Anderton Andin <[email protected]> 2018-12-18 12:30:46 +0100
committer: Ingela Anderton Andin <[email protected]> 2018-12-20 12:00:23 +0100
commit: d6b4f6dd29adc82bc3cedd143e30bef997db9b0c (patch)
tree: 44797953f66b429a72eaffe8a1394e7068c841ef /lib/ssl/src/tls_connection.erl
parent: d82e39db62513c81a12ee015ba44aae1837662ff (diff)
download: otp-d6b4f6dd29adc82bc3cedd143e30bef997db9b0c.tar.gz
otp-d6b4f6dd29adc82bc3cedd143e30bef997db9b0c.tar.bz2
otp-d6b4f6dd29adc82bc3cedd143e30bef997db9b0c.zip
1 files changed, 25 insertions, 2 deletions
diff --git a/lib/ssl/src/tls_connection.erl b/lib/ssl/src/tls_connection.erl
index 9aeca8c589..798b853026 100644
--- a/lib/ssl/src/tls_connection.erl
+++ b/lib/ssl/src/tls_connection.erl
@@ -620,12 +620,34 @@ connection(internal, #hello_request{},
                                            port = Port,
                                            session_cache = Cache,
                                            session_cache_cb = CacheCb},
+                  renegotiation = {Renegotiation, peer},
+		  session = #session{own_certificate = Cert} = Session0,
+		  ssl_options = SslOpts, 
+                  protocol_specific = #{sender := Pid},
+		  connection_states = ConnectionStates} = State0) ->
+    try tls_sender:peer_renegotiate(Pid) of
+        {ok, Write} ->
+            Hello = tls_handshake:client_hello(Host, Port, ConnectionStates, SslOpts,
+                                               Cache, CacheCb, Renegotiation, Cert),
+            {State, Actions} = send_handshake(Hello, State0#state{connection_states = ConnectionStates#{current_write => Write}}),
+            next_event(hello, no_record, State#state{session = Session0#session{session_id
+                                                                      = Hello#client_hello.session_id}}, Actions)
+        catch 
+            _:_ ->
+                {stop, {shutdown, sender_blocked}, State0}
+        end;
+connection(internal, #hello_request{},
+	   #state{static_env = #static_env{role = client,
+                                           host = Host,
+                                           port = Port,
+                                           session_cache = Cache,
+                                           session_cache_cb = CacheCb},
                   renegotiation = {Renegotiation, _},
 		  session = #session{own_certificate = Cert} = Session0,
-		  ssl_options = SslOpts,                
+		  ssl_options = SslOpts, 
 		  connection_states = ConnectionStates} = State0) ->
     Hello = tls_handshake:client_hello(Host, Port, ConnectionStates, SslOpts,
-				       Cache, CacheCb, Renegotiation, Cert),
+                                       Cache, CacheCb, Renegotiation, Cert),
     {State, Actions} = send_handshake(Hello, State0),
     next_event(hello, no_record, State#state{session = Session0#session{session_id
                                                                         = Hello#client_hello.session_id}}, Actions);
@@ -655,6 +677,7 @@ connection(internal, #client_hello{},
     send_alert_in_connection(Alert, State0),
     State = Connection:reinit_handshake_data(State0),
     next_event(?FUNCTION_NAME, no_record, State);
+
 connection(Type, Event, State) ->
     ssl_connection:?FUNCTION_NAME(Type, Event, State, ?MODULE).
author	Ingela Anderton Andin <[email protected]>	2018-12-18 12:30:46 +0100
committer	Ingela Anderton Andin <[email protected]>	2018-12-20 12:00:23 +0100
commit	d6b4f6dd29adc82bc3cedd143e30bef997db9b0c (patch)
tree	44797953f66b429a72eaffe8a1394e7068c841ef /lib/ssl/src/tls_connection.erl
parent	d82e39db62513c81a12ee015ba44aae1837662ff (diff)
download	otp-d6b4f6dd29adc82bc3cedd143e30bef997db9b0c.tar.gz otp-d6b4f6dd29adc82bc3cedd143e30bef997db9b0c.tar.bz2 otp-d6b4f6dd29adc82bc3cedd143e30bef997db9b0c.zip