GnuTLS now uses gnutls_session_set_premaster()

Signed-off-by: David Woodhouse <David.Woodhouse@intel.com>

configure.ac

@@ -201,8 +201,8 @@ if test "$with_gnutls" = "yes" || test "$with_gnutls" = "shibboleet"; then
     LIBS="$LIBS $GNUTLS_LIBS"
     AC_CHECK_FUNC(gnutls_pkcs12_simple_parse,
 		 [AC_DEFINE(HAVE_GNUTLS_PKCS12_SIMPLE_PARSE, 1)], [])
-    AC_CHECK_FUNC(gnutls_session_set_master,
-		 [AC_DEFINE(HAVE_GNUTLS_SESSION_SET_MASTER, 1)], [])
+    AC_CHECK_FUNC(gnutls_session_set_premaster,
+		 [AC_DEFINE(HAVE_GNUTLS_SESSION_SET_PREMASTER, 1)], [])
     LIBS="$oldLIBS"
 elif test "$with_gnutls" != "" && test "$with_gnutls" != "no"; then
     AC_MSG_ERROR([Values other than 'yes' or 'no' for --with-gnutls are not supported])

dtls.c

@@ -356,10 +356,10 @@ static int start_dtls_handshake(struct openconnect_info *vpninfo, int dtls_fd)
 	master_secret.size = sizeof(vpninfo->dtls_secret);
 	session_id.data = vpninfo->dtls_session_id;
 	session_id.size = sizeof(vpninfo->dtls_session_id);
-	err = gnutls_session_set_master(dtls_ssl, GNUTLS_CLIENT, GNUTLS_DTLS0_9,
-					GNUTLS_KX_RSA, GNUTLS_CIPHER_AES_128_CBC,
-					GNUTLS_MAC_SHA1, GNUTLS_COMP_NULL,
-					&master_secret, &session_id);
+	err = gnutls_session_set_premaster(dtls_ssl, GNUTLS_CLIENT, GNUTLS_DTLS0_9,
+					   GNUTLS_KX_RSA, GNUTLS_CIPHER_AES_128_CBC,
+					   GNUTLS_MAC_SHA1, GNUTLS_COMP_NULL,
+					   &master_secret, &session_id);
 	if (err) {
 		vpn_progress(vpninfo, PRG_ERR,
 			     _("Failed to set DTLS session parameters: %s\n"),

openconnect-internal.h

@@ -249,7 +249,7 @@ struct openconnect_info {
 };
 
 #if (defined (OPENCONNECT_OPENSSL) && defined (SSL_OP_CISCO_ANYCONNECT)) || \
-    (defined(OPENCONNECT_GNUTLS) && defined (HAVE_GNUTLS_SESSION_SET_MASTER))
+    (defined(OPENCONNECT_GNUTLS) && defined (HAVE_GNUTLS_SESSION_SET_PREMASTER))
 #define HAVE_DTLS 1
 #endif