projects / oweals / openssl.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: f63fa8b) | patch
Tighten session ticket handling
authorEmilia Kasper <emilia@openssl.org>
Tue, 28 Oct 2014 16:35:59 +0000 (17:35 +0100)
committerEmilia Kasper <emilia@openssl.org>
Tue, 28 Oct 2014 16:41:49 +0000 (17:41 +0100)
commit9bdedec0cf37b923024377c0280a1c134e9c49c6
tree5e1faff75760eba97ab97943208b54f9a355e12btree | snapshot
parentf63fa8b10a08fcd344f08df16b43c19dadb17055commit | diff
Tighten session ticket handling

Tighten client-side session ticket handling during renegotiation:
ensure that the client only accepts a session ticket if the server sends
the extension anew in the ServerHello. Previously, a TLS client would
reuse the old extension state and thus accept a session ticket if one was
announced in the initial ServerHello.

Reviewed-by: Bodo Moeller <bodo@openssl.org>
(cherry picked from commit d663df2399d1d9d6015bcfd2ec87b925ea3558a2)

Conflicts:
CHANGES
CHANGES diff | blob | history
ssl/s3_clnt.c diff | blob | history
ssl/ssl_sess.c diff | blob | history
Unnamed repository; edit this file 'description' to name the repository.