pike.git / lib / modules / SSL.pmod / Connection.pike

version» Context lines:

pike.git/lib/modules/SSL.pmod/Connection.pike:1041:    {    Error.Generic e = [object(Error.Generic)]exception;    COND_FATAL(1, ALERT_decode_error, e->message());    }    throw(exception);    }    if (err < 0)    return err;    if (err > 0) {    state &= ~CONNECTION_handshaking; -  COND_FATAL(sizeof(handshake_buffer), ALERT_record_overflow, +  if ((version >= PROTOCOL_TLS_1_3) || expect_change_cipher) { +  // NB: Renegotiation is available in TLS 1.2 and earlier. +  COND_FATAL(sizeof(handshake_buffer), ALERT_unexpected_message,    "Extraneous handshake packets.\n");    } -  +  COND_FATAL(sizeof(handshake_buffer) && !secure_renegotiation, +  ALERT_no_renegotiation, +  "Renegotiation not supported in unsecure mode.\n");    } -  +  }    break;    }    case PACKET_application_data:    SSL3_DEBUG_MSG("SSL.Connection: APPLICATION_DATA\n");       COND_FATAL(state & CONNECTION_handshaking,    ALERT_unexpected_message,    "Handshake not finished yet!\n");       res += packet->fragment;