Google Git
Sign in
boringssl/boringssl.git/6df7667f941eb8f65762b349f5207847b2e3cc29^!/.
commit
6df7667f941eb8f65762b349f5207847b2e3cc29
[log]
author
David Benjamin <davidben@google.com>
Wed Aug 16 13:02:24 2017 -0400
committer
CQ bot account: commit-bot@chromium.org <commit-bot@chromium.org>
Wed Aug 16 18:39:35 2017 +0000
tree
f944dae3fd28276d325e407006e50866b7c9eb9b
parent
3e2001c767a875d84a08f7c32b87f294707f3739 [diff]
Add a -renegotiate-freely flag to bssl client.

I needed to toy with a server that renegotiated recently and this was
useful.

Change-Id: Id4e2adaaa2ecfc1c434a3bae199efb2fdacc41bf
Reviewed-on: https://boringssl-review.googlesource.com/19344
Commit-Queue: Steven Valdez <svaldez@google.com>
Reviewed-by: Steven Valdez <svaldez@google.com>
CQ-Verified: CQ bot account: commit-bot@chromium.org <commit-bot@chromium.org>

diff --git a/tool/client.cc b/tool/client.cc
index d3a3115..70b6319 100644
--- a/tool/client.cc
+++ b/tool/client.cc

@@ -135,6 +135,10 @@
         "An HTTP proxy server to tunnel the TCP connection through",
     },
     {
+        "-renegotiate-freely", kBooleanArgument,
+        "Allow renegotiations from the peer.",
+    },
+    {
         "", kOptionalArgument, "",
     },
 };
@@ -262,6 +266,10 @@
     SSL_set_session(ssl.get(), session.get());
   }
 
+  if (args_map.count("-renegotiate-freely") != 0) {
+    SSL_set_renegotiate_mode(ssl.get(), ssl_renegotiate_freely);
+  }
+
   if (resume_session) {
     SSL_set_session(ssl.get(), resume_session.get());
   }