commit 67427c07b24d6eb905fba37c63e601a8f964a778
author Manuel Pégourié-Gonnard <mpg@elzevir.fr> Fri Jul 11 13:45:34 2014 +0200
committer Paul Bakker <p.j.bakker@polarssl.org> Tue Oct 21 16:30:11 2014 +0200
tree 1b5a250bcbe2899a57b1b489831caa2b5adb2a1b
parent 74848811b49191298ca2a62b07328849a3fec4db

Fix checksum computation with HelloVerifyRequest

library/ssl_tls.c

diff --git a/library/ssl_tls.c b/library/ssl_tls.c
index 5abf892..0b34160 100644
--- a/library/ssl_tls.c
+++ b/library/ssl_tls.c
@@ -2935,6 +2935,23 @@
     }
 }
 
+void ssl_reset_checksum( ssl_context *ssl )
+{
+#if defined(POLARSSL_SSL_PROTO_SSL3) || defined(POLARSSL_SSL_PROTO_TLS1) || \
+    defined(POLARSSL_SSL_PROTO_TLS1_1)
+     md5_starts( &ssl->handshake->fin_md5  );
+    sha1_starts( &ssl->handshake->fin_sha1 );
+#endif
+#if defined(POLARSSL_SSL_PROTO_TLS1_2)
+#if defined(POLARSSL_SHA256_C)
+    sha256_starts( &ssl->handshake->fin_sha256, 0 );
+#endif
+#if defined(POLARSSL_SHA512_C)
+    sha512_starts( &ssl->handshake->fin_sha512, 1 );
+#endif
+#endif /* POLARSSL_SSL_PROTO_TLS1_2 */
+}
+
 static void ssl_update_checksum_start( ssl_context *ssl,
                                        const unsigned char *buf, size_t len )
 {