]> git.ipfire.org Git - thirdparty/openssl.git/commit
Clarify that this validation only relates to retry packets
authorNeil Horman <nhorman@openssl.org>
Wed, 4 Dec 2024 21:12:02 +0000 (16:12 -0500)
committerNeil Horman <nhorman@openssl.org>
Mon, 17 Feb 2025 16:27:33 +0000 (11:27 -0500)
commitf443b4048d0cd8ec17df09b08b9cb04fc293d6de
treed4537b002ccdb7a22dde64d1e46e65f6665ce5e0
parent78f7141c12d58f0cbf9dde193b23857023700146
Clarify that this validation only relates to retry packets

Disabling server address validation here only relates to new connections
that arrive without a token.  Future connections using tokens provided
by the server via NEW_TOKEN frames will still be validated

Reviewed-by: Saša Nedvědický <sashan@openssl.org>
Reviewed-by: Tomas Mraz <tomas@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/26114)
doc/man3/SSL_new_listener.pod
ssl/quic/quic_port.c