if (state == SSL3_ST_SR_CLNT_HELLO_A
|| state == SSL23_ST_SR_CLNT_HELLO_A) {
#else
- if ((where & SSL_CB_HANDSHAKE_START) && scr->reneg_state == RENEG_REJECT) {
+ if (!scr->is_proxy &&
+ (where & SSL_CB_HANDSHAKE_START) &&
+ scr->reneg_state == RENEG_REJECT) {
#endif
scr->reneg_state = RENEG_ABORT;
ap_log_cerror(APLOG_MARK, APLOG_ERR, 0, c, APLOGNO(02042)
#endif
}
#if OPENSSL_VERSION_NUMBER >= 0x10100000L
- else if ((where & SSL_CB_HANDSHAKE_START) && scr->reneg_state == RENEG_ALLOW) {
+ else if (!scr->is_proxy &&
+ (where & SSL_CB_HANDSHAKE_START) &&
+ scr->reneg_state == RENEG_ALLOW) {
scr->reneg_state = RENEG_STARTED;
}
- else if ((where & SSL_CB_HANDSHAKE_DONE) && scr->reneg_state == RENEG_STARTED) {
+ else if (!scr->is_proxy &&
+ (where & SSL_CB_HANDSHAKE_DONE) &&
+ scr->reneg_state == RENEG_STARTED) {
scr->reneg_state = RENEG_DONE;
}
- else if ((where & SSL_CB_ALERT) &&
+ else if (!scr->is_proxy &&
+ (where & SSL_CB_ALERT) &&
(scr->reneg_state == RENEG_ALLOW || scr->reneg_state == RENEG_STARTED)) {
scr->reneg_state = RENEG_ALERT;
}