Submitted by: Peter Sylvester <peter.sylvester@edelweb.fr>

	STACK_OF(SSL_CIPHER) *sk;

	const SSL_CIPHER *c;

	unsigned char *p,*d;

	int i,al,ok;

	int i,al=SSL_AD_INTERNAL_ERROR,ok;

	unsigned int j;

	long n;

#ifndef OPENSSL_NO_COMP

			{

			if (!ssl_get_new_session(s,0))

				{

				al=SSL_AD_INTERNAL_ERROR;

				goto f_err;

				}

			}

	 */

	if (s->session->compress_meth != 0)

		{

		al=SSL_AD_INTERNAL_ERROR;

		SSLerr(SSL_F_SSL3_GET_SERVER_HELLO,SSL_R_INCONSISTENT_COMPRESSION);

		goto f_err;

		}

#ifndef OPENSSL_NO_TLSEXT

	/* TLS extensions*/

	if (s->version >= SSL3_VERSION)

	if (!ssl_parse_serverhello_tlsext(s,&p,d,n))

		{

		if (!ssl_parse_serverhello_tlsext(s,&p,d,n, &al))

			{

			/* 'al' set by ssl_parse_serverhello_tlsext */

		SSLerr(SSL_F_SSL3_GET_SERVER_HELLO,SSL_R_PARSE_TLSEXT);

			goto f_err; 

			}

		if (ssl_check_serverhello_tlsext(s) <= 0)

			{

			SSLerr(SSL_F_SSL3_GET_SERVER_HELLO,SSL_R_SERVERHELLO_TLSEXT);

		goto err; 

		}

		}

#endif

	if (p != (d+n))

int ssl3_get_client_hello(SSL *s)

	{

	int i,j,ok,al,ret= -1;

	int i,j,ok,al=SSL_AD_INTERNAL_ERROR,ret= -1;

	unsigned int cookie_len;

	long n;

	unsigned long id;

		l2n(Time,pos);

		if (RAND_pseudo_bytes(pos,SSL3_RANDOM_SIZE-4) <= 0)

			{

			al=SSL_AD_INTERNAL_ERROR;

			goto f_err;

			}

	}

		/* Can't disable compression */

		if (s->options & SSL_OP_NO_COMPRESSION)

			{

			al=SSL_AD_INTERNAL_ERROR;

			SSLerr(SSL_F_SSL3_GET_CLIENT_HELLO,SSL_R_INCONSISTENT_COMPRESSION);

			goto f_err;

			}

			}

		if (s->s3->tmp.new_compression == NULL)

			{

			al=SSL_AD_INTERNAL_ERROR;

			SSLerr(SSL_F_SSL3_GET_CLIENT_HELLO,SSL_R_INVALID_COMPRESSION_ALGORITHM);

			goto f_err;

			}

	 */

	if (s->session->compress_meth != 0)

		{

		al=SSL_AD_INTERNAL_ERROR;

		SSLerr(SSL_F_SSL3_GET_CLIENT_HELLO,SSL_R_INCONSISTENT_COMPRESSION);

		goto f_err;

		}

#define SSL_F_SSL_RSA_PRIVATE_DECRYPT			 187

#define SSL_F_SSL_RSA_PUBLIC_ENCRYPT			 188

#define SSL_F_SSL_SCAN_CLIENTHELLO_TLSEXT		 319

#define SSL_F_SSL_SCAN_SERVERHELLO_TLSEXT		 320

#define SSL_F_SSL_SESSION_NEW				 189

#define SSL_F_SSL_SESSION_PRINT_FP			 190

#define SSL_F_SSL_SESSION_SET1_ID_CONTEXT		 312

{ERR_FUNC(SSL_F_SSL_RSA_PRIVATE_DECRYPT),	"SSL_RSA_PRIVATE_DECRYPT"},

{ERR_FUNC(SSL_F_SSL_RSA_PUBLIC_ENCRYPT),	"SSL_RSA_PUBLIC_ENCRYPT"},

{ERR_FUNC(SSL_F_SSL_SCAN_CLIENTHELLO_TLSEXT),	"SSL_SCAN_CLIENTHELLO_TLSEXT"},

{ERR_FUNC(SSL_F_SSL_SCAN_SERVERHELLO_TLSEXT),	"SSL_SCAN_SERVERHELLO_TLSEXT"},

{ERR_FUNC(SSL_F_SSL_SESSION_NEW),	"SSL_SESSION_new"},

{ERR_FUNC(SSL_F_SSL_SESSION_PRINT_FP),	"SSL_SESSION_print_fp"},

{ERR_FUNC(SSL_F_SSL_SESSION_SET1_ID_CONTEXT),	"SSL_SESSION_set1_id_context"},

unsigned char *ssl_add_clienthello_tlsext(SSL *s, unsigned char *p, unsigned char *limit); 

unsigned char *ssl_add_serverhello_tlsext(SSL *s, unsigned char *p, unsigned char *limit); 

int ssl_parse_clienthello_tlsext(SSL *s, unsigned char **data, unsigned char *d, int n);

int ssl_parse_serverhello_tlsext(SSL *s, unsigned char **data, unsigned char *d, int n, int *al);

int ssl_parse_serverhello_tlsext(SSL *s, unsigned char **data, unsigned char *d, int n);

int ssl_prepare_clienthello_tlsext(SSL *s);

int ssl_prepare_serverhello_tlsext(SSL *s);

int ssl_check_clienthello_tlsext(SSL *s);

int ssl_check_serverhello_tlsext(SSL *s);

#ifndef OPENSSL_NO_HEARTBEATS

int tls1_heartbeat(SSL *s);