]> git.ipfire.org Git - thirdparty/openssl.git/commit
projects / thirdparty / openssl.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 326eaa9) | patch
Reorder extensions to put SigAlgs last
authorTodd Short <tshort@akamai.com>
Fri, 18 Aug 2017 13:32:29 +0000 (09:32 -0400)
committerRich Salz <rsalz@openssl.org>
Fri, 18 Aug 2017 13:52:17 +0000 (09:52 -0400)
commit10ed1b72391ded9853bec417d4d32bd6ec45f916
tree35c5637fa243c3febfce03a03807eac61f303faftree
parent326eaa941e03a8922a3789ccab0d134c63d05c92commit | diff
Reorder extensions to put SigAlgs last

Force non-empty padding extension.
When enabled, force the padding extension to be at least 1 byte long.
WebSphere application server cannot handle having an empty
extension (e.g. EMS/EtM) as the last extension in a client hello.
This moves the SigAlgs extension last for TLSv1.2 to avoid this
issue.

Reviewed-by: Matt Caswell <matt@openssl.org>
Reviewed-by: Rich Salz <rsalz@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/3921)
ssl/ssl_locl.h diff | blob | blame | history
ssl/statem/extensions.c diff | blob | blame | history
ssl/statem/extensions_clnt.c diff | blob | blame | history
test/sslapitest.c diff | blob | blame | history
Mirror of https://github.com/openssl/openssl.git