Fix end-point shared secret for DTLS/SCTP
authorMichael Tuexen <tuexen@fh-muenster.de>
Wed, 26 Dec 2018 11:44:53 +0000 (12:44 +0100)
committerMatt Caswell <matt@openssl.org>
Fri, 1 Feb 2019 11:57:19 +0000 (11:57 +0000)
commit09d62b336d9e2a11b330d45d4f0f3f37cbb0d674
tree15525fb485d6460fe0197194ffac5bed06f7a8b7
parenta28e4890eed847e6122a1c4d50653566e0813f45
Fix end-point shared secret for DTLS/SCTP

When computing the end-point shared secret, don't take the
terminating NULL character into account.
Please note that this fix breaks interoperability with older
versions of OpenSSL, which are not fixed.

Fixes #7956

Reviewed-by: Kurt Roeckx <kurt@roeckx.be>
Reviewed-by: Matt Caswell <matt@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/7957)
15 files changed:
CHANGES
apps/s_client.c
apps/s_server.c
doc/man1/s_client.pod
doc/man1/s_server.pod
doc/man3/SSL_CTX_set_mode.pod
include/openssl/ssl.h
ssl/statem/statem_clnt.c
ssl/statem/statem_srvr.c
test/handshake_helper.c
test/recipes/80-test_ssl_new.t
test/ssl-tests/29-dtls-sctp-label-bug.conf [new file with mode: 0644]
test/ssl-tests/29-dtls-sctp-label-bug.conf.in [new file with mode: 0644]
test/ssl_test_ctx.c
test/ssl_test_ctx.h