mirror/openssl
2
0
Fork 0
mirror of https://github.com/openssl/openssl.git synced 2024-12-09 05:51:54 +08:00
Code Issues Packages Projects Releases Wiki Activity
7e6a302549
openssl/ssl
History
Matt Caswell f01344cb5c Do not reset SNI data in SSL_do_handshake() 
PR #3783 introduce coded to reset the server side SNI state in
SSL_do_handshake() to ensure any erroneous config time SNI changes are
cleared. Unfortunately SSL_do_handshake() can be called mid-handshake
multiple times so this is the wrong place to do this and can mean that
any SNI data is cleared later on in the handshake too.

Therefore move the code to a more appropriate place.

Fixes #7014

Reviewed-by: Tim Hudson <tjh@openssl.org>
Reviewed-by: Viktor Dukhovni <viktor@openssl.org>
Reviewed-by: Ben Kaduk <kaduk@mit.edu>
(Merged from https://github.com/openssl/openssl/pull/7149)
2018-09-07 18:24:59 +01:00
..
record Process KeyUpdate and NewSessionTicket messages after a close_notify 2018-09-07 11:15:20 +01:00
statem Do not reset SNI data in SSL_do_handshake() 2018-09-07 18:24:59 +01:00
bio_ssl.c
build.info
d1_lib.c
d1_msg.c
d1_srtp.c
methods.c
packet_locl.h Remove __cplusplus preamble from internal headers 2018-06-22 12:24:59 +02:00
packet.c Update copyright year 2018-04-17 15:18:40 +02:00
pqueue.c Use void in all function definitions that do not take any arguments 2018-05-11 14:37:48 +02:00
s3_cbc.c
s3_enc.c Ensure that we write out alerts correctly after early_data 2018-08-08 10:16:58 +01:00
s3_lib.c Fix a mem leak on error in the PSK code 2018-08-30 09:50:29 +08:00
s3_msg.c Update copyright year 2018-02-13 13:59:25 +00:00
ssl_asn1.c Don't use OPENSSL_strdup() for copying alpn_selected 2018-06-21 11:07:45 +01:00
ssl_cert_table.h Update copyright year 2018-03-20 13:08:46 +00:00
ssl_cert.c Rename SSL[_CTX]_add1_CA_list -> SSL[_CTX]_add1_to_CA_list 2018-09-03 13:10:17 +02:00
ssl_ciph.c Harmonize use of sk_TYPE_find's return value. 2018-08-07 08:56:54 +02:00
ssl_conf.c Add the ability to configure anti-replay via SSL_CONF 2018-07-02 15:06:12 +01:00
ssl_err.c Fix some TLSv1.3 alert issues 2018-07-31 09:31:50 +01:00
ssl_init.c Fix setting of ssl_strings_inited. 2018-08-07 15:08:03 -04:00
ssl_lib.c Do not reset SNI data in SSL_do_handshake() 2018-09-07 18:24:59 +01:00
ssl_locl.h Use the same min-max version range on the client consistently 2018-08-22 15:15:19 +01:00
ssl_mcnf.c Move the loading of the ssl_conf module to libcrypto 2018-04-05 15:30:12 +01:00
ssl_rsa.c Update copyright year 2018-03-20 13:08:46 +00:00
ssl_sess.c ssl/*: switch to switch to Thread-Sanitizer-friendly primitives. 2018-08-07 09:08:23 +02:00
ssl_stat.c
ssl_txt.c Address coverity-reported NULL dereference in SSL_SESSION_print() 2018-07-01 18:20:11 -05:00
ssl_utst.c
t1_enc.c Ensure that we write out alerts correctly after early_data 2018-08-08 10:16:58 +01:00
t1_lib.c Don't use an RSA-PSS cert for RSA key exchange 2018-09-04 11:28:01 +01:00
t1_trce.c Fix ssl/t1_trce.c to parse certificate chains 2018-09-01 08:58:42 +08:00
tls13_enc.c key zeroization fix for a branch path of tls13_final_finish_mac 2018-09-05 05:06:00 +10:00
tls_srp.c Use the private RNG for data that is not public 2018-04-02 22:22:43 +02:00