projects / openssl.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 8f96590) | patch
Improve RFC 8446 PSK key exchange mode compliance
authorBenjamin Kaduk <bkaduk@akamai.com>
Tue, 30 Mar 2021 06:03:49 +0000 (23:03 -0700)
committerBenjamin Kaduk <bkaduk@akamai.com>
Wed, 12 May 2021 16:11:48 +0000 (09:11 -0700)
commitefe0f315354b020213097885c79ce856a2f5ac68
tree959bf17688905a52b5dbcfa68947b97b2fd02a6ftree | snapshot
parent8f965908a53b4f0c5a735739e8a273a3a33a976ecommit | diff
Improve RFC 8446 PSK key exchange mode compliance

It's a MUST-level requirement that if the client sends a pre_shared_key
extension not accompanied by a psk_key_exchange_modes extension, the
server must abort the handshake.  Prior to this commit the server
would continue on.

Reviewed-by: Tomas Mraz <tomas@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/14749)
ssl/statem/extensions.c diff | blob | history
Unnamed repository; edit this file 'description' to name the repository.