]> git.ipfire.org Git - thirdparty/openssl.git/commit
projects / thirdparty / openssl.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 771814b) | patch
Ignore RecordPadding option in config file for QUIC objects
authorNeil Horman <nhorman@openssl.org>
Sat, 25 Oct 2025 11:21:42 +0000 (07:21 -0400)
committerTomas Mraz <tomas@openssl.org>
Fri, 21 Nov 2025 13:28:15 +0000 (14:28 +0100)
commit4d33baf56536f98d9cc5e73953e5c392df782154
treec2a76161a3c79d68523d27079f2a7cae22816830tree | snapshot
parent771814bee7bde0e03d8b83abba38c1dad0f42e0fcommit | diff
Ignore RecordPadding option in config file for QUIC objects

QUIC connections always pad data at the packet level during packet
encryption, and so have no ability to do padding at the record level.

We want to be able to inform the user of this condition when
applications call SSL_set_block_padding_ex directly by returning an
error, we have no idea of what kind of SSL objects are created when the
config file is written.

As such, silently ignore this config file option when QUIC objects are created.

Fixes #28953

Reviewed-by: Saša Nedvědický <sashan@openssl.org>
Reviewed-by: Matt Caswell <matt@openssl.org>
Reviewed-by: Tomas Mraz <tomas@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/28992)
doc/man3/SSL_CONF_cmd.pod diff | blob | blame | history
ssl/ssl_conf.c diff | blob | blame | history
Mirror of https://github.com/openssl/openssl.git