git.ipfire.org Git - thirdparty/openssl.git/commit

]> git.ipfire.org Git - thirdparty/openssl.git/commit

projects / thirdparty / openssl.git / commit

author	Matt Caswell <matt@openssl.org>
	Fri, 21 Jun 2024 10:51:54 +0000 (11:51 +0100)
committer	Matt Caswell <matt@openssl.org>
	Thu, 27 Jun 2024 09:37:54 +0000 (10:37 +0100)
commit	017e54183b95617825fb9316d618c154a34c634e
tree	5583f5abc1326b77e927e0d3e903b328ce6b4fd6	tree \| snapshot
parent	087501b4f572825e27ca8cc2c5874fcf6fd47cf7	commit \| diff

Add ALPN validation in the client

The ALPN protocol selected by the server must be one that we originally
advertised. We should verify that it is.

Follow on from CVE-2024-5535

Reviewed-by: Neil Horman <nhorman@openssl.org>
Reviewed-by: Tomas Mraz <tomas@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/24718)

ssl/statem/extensions_clnt.c

diff | blob | blame | history

Mirror of https://github.com/openssl/openssl.git

RSS Atom