projects / openssl.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 068e3d7) | patch
Verify that only NULL compression is sent in TLSv1.3 ClientHello
authorMatt Caswell <matt@openssl.org>
Mon, 8 May 2017 13:47:33 +0000 (14:47 +0100)
committerMatt Caswell <matt@openssl.org>
Tue, 9 May 2017 16:02:48 +0000 (17:02 +0100)
commit1fe3549428ea5b976eb2f0e352edd676fe0b1fab
treed51d57daef54b30e3435140c7ae4b32ede1f8484tree | snapshot
parent068e3d73ce6814879832c9400c10afe2458c2004commit | diff
Verify that only NULL compression is sent in TLSv1.3 ClientHello

It is illegal in a TLSv1.3 ClientHello to send anything other than the
NULL compression method. We should send an alert if we find anything else
there. Previously we were ignoring this error.

Reviewed-by: Rich Salz <rsalz@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/3410)
ssl/statem/statem_srvr.c diff | blob | history
Unnamed repository; edit this file 'description' to name the repository.