projects / oweals / openssl.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 7646610) | patch
Do not allow dropping Extended Master Secret extension on renegotiaton
authorTomas Mraz <tmraz@fedoraproject.org>
Thu, 4 Jun 2020 09:40:29 +0000 (11:40 +0200)
committerTomas Mraz <tmraz@fedoraproject.org>
Tue, 9 Jun 2020 12:11:19 +0000 (14:11 +0200)
commit11d3235e2b5a1dc9f48c040b1f1b6bea86ffc745
tree30a7c0f99180ec1712fc5d59e698646448389082tree | snapshot
parent7646610b6a2c53ae50ed453c88291c23630e7850commit | diff
Do not allow dropping Extended Master Secret extension on renegotiaton

Abort renegotiation if server receives client hello with Extended Master
Secret extension dropped in comparison to the initial session.

Fixes #9754

Reviewed-by: Matt Caswell <matt@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/12045)
CHANGES.md diff | blob | history
include/openssl/ssl3.h diff | blob | history
ssl/statem/extensions.c diff | blob | history
Unnamed repository; edit this file 'description' to name the repository.