git.ipfire.org Git - thirdparty/openssl.git/commit

]> git.ipfire.org Git - thirdparty/openssl.git/commit

projects / thirdparty / openssl.git / commit

author	David Woodhouse <dwmw2@infradead.org>
	Mon, 2 Mar 2015 16:20:15 +0000 (16:20 +0000)
committer	Matt Caswell <matt@openssl.org>
	Mon, 9 Mar 2015 11:07:47 +0000 (11:07 +0000)
commit	0d691e0e27a5eed8ece790830b8a2168348b1373
tree	7a2055f201add2665d432877a09b0692673c5e92	tree \| snapshot
parent	ae3fcdf1e5865b709aed4e66924197bc6191fc5b	commit \| diff

Wrong SSL version in DTLS1_BAD_VER ClientHello

Since commit 741c9959 ("DTLS revision."), we put the wrong protocol
version into our ClientHello for DTLS1_BAD_VER. The old DTLS
code which used ssl->version was replaced by the more generic SSL3 code
which uses ssl->client_version. The Cisco ASA no longer likes our
ClientHello.

RT#3711

Reviewed-by: Rich Salz <rsalz@openssl.org>
(cherry picked from commit f7683aaf36341dc65672ac2ccdbfd4a232e3626d)

ssl/d1_lib.c

diff | blob | blame | history

A mirror of the official openssl repository

RSS Atom