projects / oweals / openssl.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 1380317) | patch
Tighten session ticket handling
authorEmilia Kasper <emilia@openssl.org>
Tue, 28 Oct 2014 16:35:59 +0000 (17:35 +0100)
committerEmilia Kasper <emilia@openssl.org>
Tue, 28 Oct 2014 16:38:23 +0000 (17:38 +0100)
commit4c75f4e5ca00e48dec0bd42ce3f65eec8274cdc4
tree29693d4d23462f822e23ab6f73d3d97f3f6c0762tree | snapshot
parent1380317483e2179b5c551659713b9ee46221e70bcommit | diff
Tighten session ticket handling

Tighten client-side session ticket handling during renegotiation:
ensure that the client only accepts a session ticket if the server sends
the extension anew in the ServerHello. Previously, a TLS client would
reuse the old extension state and thus accept a session ticket if one was
announced in the initial ServerHello.

Reviewed-by: Bodo Moeller <bodo@openssl.org>
(cherry picked from commit d663df2399d1d9d6015bcfd2ec87b925ea3558a2)
CHANGES diff | blob | history
ssl/s3_clnt.c diff | blob | history
ssl/ssl_sess.c diff | blob | history
Unnamed repository; edit this file 'description' to name the repository.