projects / openssl.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: c3b9bd1) | patch
Repair EAP-FAST session resumption
authorEmilia Kasper <emilia@openssl.org>
Tue, 21 Apr 2015 16:12:58 +0000 (18:12 +0200)
committerEmilia Kasper <emilia@openssl.org>
Tue, 21 Apr 2015 16:12:58 +0000 (18:12 +0200)
commit6e3d015363ed09c4eff5c02ad41153387ffdf5af
tree5d24c2a6db27c03d58db0201558c21f0d8580ab2tree | snapshot
parentc3b9bd11f9908c5103a3b39753bb48e78a9cf0d3commit | diff
Repair EAP-FAST session resumption

EAP-FAST session resumption relies on handshake message lookahead
to determine server intentions. Commits
980bc1ec6114f5511b20c2e6ca741e61a39b99d6
and
7b3ba508af5c86afe43e28174aa3c53a0a24f4d9
removed the lookahead so broke session resumption.

This change partially reverts the commits and brings the lookahead back
in reduced capacity for TLS + EAP-FAST only. Since EAP-FAST does not
support regular session tickets, the lookahead now only checks for a
Finished message.

Regular handshakes are unaffected by this change.

Reviewed-by: David Benjamin <davidben@chromium.org>
Reviewed-by: Matt Caswell <matt@openssl.org>
include/openssl/ssl.h diff | blob | history
ssl/s3_clnt.c diff | blob | history
ssl/ssl_err.c diff | blob | history
Unnamed repository; edit this file 'description' to name the repository.