git.ipfire.org Git - thirdparty/openssl.git/commit

author	Matt Caswell <matt@openssl.org>
	Fri, 21 Jun 2024 13:29:26 +0000 (14:29 +0100)
committer	Matt Caswell <matt@openssl.org>
	Thu, 27 Jun 2024 09:39:47 +0000 (10:39 +0100)
commit	99c2b6b971c302595db1801e26a202247238659d
tree	a10d30ac35e586f8d1cf957ae05aec15237537f6	tree \| snapshot
parent	ca176d7291eb780e4ed2781342f5be5a32210a68	commit \| diff

Add a test for an empty NextProto message

It is valid according to the spec for a NextProto message to have no
protocols listed in it. The OpenSSL implementation however does not allow
us to create such a message. In order to check that we work as expected
when communicating with a client that does generate such messages we have
to use a TLSProxy test.

Follow on from CVE-2024-5535

Reviewed-by: Neil Horman <nhorman@openssl.org>
Reviewed-by: Tomas Mraz <tomas@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/24718)

(cherry picked from commit a201030901de9f9a48b34c38f6922fb0b272f26f)

test/recipes/70-test_npn.t	[new file with mode: 0644]	blob
util/perl/TLSProxy/Message.pm		diff \| blob \| blame \| history
util/perl/TLSProxy/NextProto.pm	[new file with mode: 0644]	blob
util/perl/TLSProxy/Proxy.pm		diff \| blob \| blame \| history