git.ipfire.org Git - thirdparty/openssl.git/commit

]> git.ipfire.org Git - thirdparty/openssl.git/commit

projects / thirdparty / openssl.git / commit

author	Matt Caswell <matt@openssl.org>
	Fri, 21 Jun 2024 10:51:54 +0000 (11:51 +0100)
committer	Matt Caswell <matt@openssl.org>
	Thu, 27 Jun 2024 09:39:47 +0000 (10:39 +0100)
commit	4b375b998798dd516d367036773073e1b88e6433
tree	e3ebda6a7eb68c29f59af59dabe9503fa9f8a890	tree
parent	189a7ed3e380e34ea38fe4190a7c9396bace0fb7	commit \| diff

Add ALPN validation in the client

The ALPN protocol selected by the server must be one that we originally
advertised. We should verify that it is.

Follow on from CVE-2024-5535

Reviewed-by: Neil Horman <nhorman@openssl.org>
Reviewed-by: Tomas Mraz <tomas@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/24718)

(cherry picked from commit 017e54183b95617825fb9316d618c154a34c634e)

ssl/statem/extensions_clnt.c

diff | blob | blame | history

Mirror of https://github.com/openssl/openssl.git

RSS Atom