projects / openssl.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 5d23e13) | patch
Always require an advertised NewSessionTicket message.
authorEmilia Kasper <emilia@openssl.org>
Wed, 19 Nov 2014 15:40:27 +0000 (16:40 +0100)
committerEmilia Kasper <emilia@openssl.org>
Thu, 20 Nov 2014 14:17:36 +0000 (15:17 +0100)
commit9baee0216fe3bf572435a867963bdeea8ad95b59
tree236bd540778f5bbc83eeeb439d8efcb3b8ac65b5tree | snapshot
parent5d23e1303c8e4f3c9371cb28366e51fda7a583a7commit | diff
Always require an advertised NewSessionTicket message.

The server must send a NewSessionTicket message if it advertised one
in the ServerHello, so make a missing ticket message an alert
in the client.

An equivalent change was independently made in BoringSSL, see commit
6444287806d801b9a45baf1f6f02a0e3a16e144c.

Reviewed-by: Matt Caswell <matt@openssl.org>
(cherry picked from commit de2c7504ebd4ec15334ae151a31917753468f86f)
CHANGES diff | blob | history
ssl/s3_clnt.c diff | blob | history
Unnamed repository; edit this file 'description' to name the repository.