]> git.ipfire.org Git - thirdparty/openssl.git/commit
projects / thirdparty / openssl.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 0903142) | patch
Fix handling of max_fragment_length extension for PSK
authorFrederik Wedel-Heinen <frederik.wedel-heinen@dencrypt.dk>
Tue, 28 May 2024 11:59:44 +0000 (13:59 +0200)
committerTomas Mraz <tomas@openssl.org>
Thu, 20 Jun 2024 14:52:28 +0000 (16:52 +0200)
commit6f4e5d81224bf7e425e985b2ed8b43903f196d15
tree1e0742c5c8cd4c6ada772c11c47cfafc3b7d46edtree | snapshot
parent09031421d16822843f52b3c358f248eee7c7d27ccommit | diff
Fix handling of max_fragment_length extension for PSK

A psk session was assumed to be a resumption which failed a check
when parsing the max_fragment_length extension hello from the client.

Relevant code from PR#18130 which was a suggested fix to the issue
was cherry-picked.

Fixes #18121

Reviewed-by: Matt Caswell <matt@openssl.org>
Reviewed-by: Viktor Dukhovni <viktor@openssl.org>
Reviewed-by: Tomas Mraz <tomas@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/24513)

(cherry picked from commit fa495604516a610d988f02298c8d97a6ac4777bb)
include/openssl/tls1.h diff | blob | blame | history
ssl/ssl_sess.c diff | blob | blame | history
ssl/statem/extensions.c diff | blob | blame | history
ssl/statem/extensions_srvr.c diff | blob | blame | history
ssl/t1_lib.c diff | blob | blame | history
Mirror of https://github.com/openssl/openssl.git