projects / openssl.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: bc420eb) | patch
Use the same min-max version range on the client consistently
authorMatt Caswell <matt@openssl.org>
Mon, 20 Aug 2018 14:12:39 +0000 (15:12 +0100)
committerMatt Caswell <matt@openssl.org>
Wed, 22 Aug 2018 14:15:19 +0000 (15:15 +0100)
commitb5b993b2295be98e23fa8bb570b2c38c5bf8aaf3
treeb9452ca6460302ff329f17158e9327962638a510tree | snapshot
parentbc420ebea2c5ad813779ac3395f1c5a1083d49c5commit | diff
Use the same min-max version range on the client consistently

We need to ensure that the min-max version range we use when constructing
the ClientHello is the same range we use when we validate the version
selected by the ServerHello. Otherwise this may appear as a fallback or
downgrade.

Fixes #6964

Reviewed-by: Viktor Dukhovni <viktor@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/7013)
ssl/ssl_locl.h diff | blob | history
ssl/statem/extensions.c diff | blob | history
ssl/statem/extensions_clnt.c diff | blob | history
ssl/statem/statem_lib.c diff | blob | history
ssl/t1_lib.c diff | blob | history
Unnamed repository; edit this file 'description' to name the repository.