]> git.ipfire.org Git - thirdparty/ipxe.git/commit
projects / thirdparty / ipxe.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: ab64bc5) | patch
[tls] Refuse to resume sessions with mismatched master secret methods
authorMichael Brown <mcb30@ipxe.org>
Sun, 12 Oct 2025 21:29:33 +0000 (22:29 +0100)
committerMichael Brown <mcb30@ipxe.org>
Sun, 12 Oct 2025 22:25:09 +0000 (23:25 +0100)
commit57504353febc61533e637f16ec6f933870b68ec9
tree98c1ccbb43ae0e1d5435047ad13f7ae4cbc1936btree | snapshot
parentab64bc5b8d2335294ce2d967fc1f0c32322bbf40commit | diff
[tls] Refuse to resume sessions with mismatched master secret methods

RFC 7627 section 5.3 states that the client must abort the handshake
if the server attempts to resume a session where the master secret
calculation method stored in the session does not match the method
used for the connection being resumed.

Signed-off-by: Michael Brown <mcb30@ipxe.org>
src/include/ipxe/tls.h diff | blob | blame | history
src/net/tls.c diff | blob | blame | history
Mirror of https://github.com/ipxe/ipxe.git