Parse Signature Algorithm ext when renegotiating Signature algorithm extension was skipped when renegotiation was in progress, causing the signature algorithm not to be known when renegotiating, and failing the handshake. Fix removes the renegotiation step check before parsing the extension.

commit: 73a381772b3290487c9d010dce0a6c8dc13f66b7 [log] [tgz]
author: Ron Eldor <Ron.Eldor@arm.com> Tue Oct 03 15:58:26 2017 +0300
committer: Simon Butcher <simon.butcher@arm.com> Thu Oct 12 23:21:37 2017 +0100
tree: 40cde3f68431a9d875f029ee3fefe9736122eea2
parent: 8ca0e8fdff8c946f27d65c73e9751b414fc7bf95 [diff] [blame]
diff --git a/library/ssl_srv.c b/library/ssl_srv.c
index f137c3d..37f415d 100644
--- a/library/ssl_srv.c
+++ b/library/ssl_srv.c

@@ -1694,11 +1694,8 @@
 #if defined(MBEDTLS_SSL_PROTO_TLS1_2) && \
     defined(MBEDTLS_KEY_EXCHANGE__WITH_CERT__ENABLED)
             case MBEDTLS_TLS_EXT_SIG_ALG:
-                    MBEDTLS_SSL_DEBUG_MSG( 3, ( "found signature_algorithms extension" ) );
-#if defined(MBEDTLS_SSL_RENEGOTIATION)
-                if( ssl->renego_status == MBEDTLS_SSL_RENEGOTIATION_IN_PROGRESS )
-                    break;
-#endif
+                MBEDTLS_SSL_DEBUG_MSG( 3, ( "found signature_algorithms extension" ) );
+
                 ret = ssl_parse_signature_algorithms_ext( ssl, ext + 4, ext_size );
                 if( ret != 0 )
                     return( ret );
commit	73a381772b3290487c9d010dce0a6c8dc13f66b7	[log] [tgz]
author	Ron Eldor <Ron.Eldor@arm.com>	Tue Oct 03 15:58:26 2017 +0300
committer	Simon Butcher <simon.butcher@arm.com>	Thu Oct 12 23:21:37 2017 +0100
tree	40cde3f68431a9d875f029ee3fefe9736122eea2
parent	8ca0e8fdff8c946f27d65c73e9751b414fc7bf95 [diff] [blame]