projects / openssl.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 976b263) | patch
Disallow SSL2_VERSION record version in an SSLv3 record header
authorMatt Caswell <matt@openssl.org>
Wed, 18 May 2022 14:26:04 +0000 (15:26 +0100)
committerMatt Caswell <matt@openssl.org>
Thu, 18 Aug 2022 15:38:12 +0000 (16:38 +0100)
commit014baa8a6dec5956416baad5af4ddda13bf74341
tree33ce25cc8449004f9f0a14b859d72266d7e12d59tree | snapshot
parent976b263d0a8581059c21fb34653df3375667f050commit | diff
Disallow SSL2_VERSION record version in an SSLv3 record header

When validate_record_header() gets called it should be able to rely on
the fact that an SSLv2 record version means that the record was received in
SSLv2 format.

Reviewed-by: Hugo Landau <hlandau@openssl.org>
Reviewed-by: Tomas Mraz <tomas@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/18132)
ssl/record/methods/tls_common.c diff | blob | history
Unnamed repository; edit this file 'description' to name the repository.