projects / openssl.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 49b0dfc) | patch
Tighten session ticket handling
authorEmilia Kasper <emilia@openssl.org>
Tue, 28 Oct 2014 16:35:59 +0000 (17:35 +0100)
committerEmilia Kasper <emilia@openssl.org>
Tue, 28 Oct 2014 16:35:59 +0000 (17:35 +0100)
commitd663df2399d1d9d6015bcfd2ec87b925ea3558a2
tree088b028800ef69149db550d83e26180df5548168tree | snapshot
parent49b0dfc5026338f1227fdb0f9b3c18485dc459e9commit | diff
Tighten session ticket handling

Tighten client-side session ticket handling during renegotiation:
ensure that the client only accepts a session ticket if the server sends
the extension anew in the ServerHello. Previously, a TLS client would
reuse the old extension state and thus accept a session ticket if one was
announced in the initial ServerHello.

Reviewed-by: Bodo Moeller <bodo@openssl.org>
CHANGES diff | blob | history
ssl/s3_clnt.c diff | blob | history
ssl/ssl_sess.c diff | blob | history
Unnamed repository; edit this file 'description' to name the repository.