git.ipfire.org Git - thirdparty/openssl.git/commit

]> git.ipfire.org Git - thirdparty/openssl.git/commit

projects / thirdparty / openssl.git / commit

author	Matt Caswell <matt@openssl.org>
	Fri, 21 Jun 2024 10:51:54 +0000 (11:51 +0100)
committer	Matt Caswell <matt@openssl.org>
	Thu, 27 Jun 2024 09:32:15 +0000 (10:32 +0100)
commit	08afde3c40e5cb2174b89e093990cefdd66af96b
tree	9758a1bf0ea3086452e781bf2bb19a5d842b6261	tree
parent	311babac7f52d75bcaa8c8b812758ca08b3bf004	commit \| diff

Add ALPN validation in the client

The ALPN protocol selected by the server must be one that we originally
advertised. We should verify that it is.

Follow on from CVE-2024-5535

Reviewed-by: Tomas Mraz <tomas@openssl.org>
Reviewed-by: Neil Horman <nhorman@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/24716)

(cherry picked from commit 238fa464d6e38aa2c92af70ef9580c74cff512e4)

ssl/statem/extensions_clnt.c

diff | blob | blame | history

Mirror of https://github.com/openssl/openssl.git

RSS Atom