]> git.ipfire.org Git - thirdparty/openssl.git/commitdiff
QUIC SSL: Block SSL_dup
authorHugo Landau <hlandau@openssl.org>
Mon, 16 Jan 2023 15:36:07 +0000 (15:36 +0000)
committerPauli <pauli@openssl.org>
Tue, 4 Jul 2023 23:02:27 +0000 (09:02 +1000)
Reviewed-by: Tomas Mraz <tomas@openssl.org>
Reviewed-by: Matt Caswell <matt@openssl.org>
Reviewed-by: Paul Dale <pauli@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/20061)

doc/man3/SSL_new.pod
test/quicapitest.c

index 59d275523f98e7d018e4abca5302192e0373980a..0917127831672f78c28baeed2d78088e0e457937 100644 (file)
@@ -96,6 +96,8 @@ SSL_set0_client_CA_list() or similar functions
 
 =back
 
+SSL_dup() is not supported on QUIC SSL objects.
+
 =head1 RETURN VALUES
 
 The following return values can occur:
index 824f1f4e1ae6317b0a696da94bfa11081e00d090..55f4bf006b2b438ef77791b5d20ff3a61706755c 100644 (file)
@@ -514,6 +514,10 @@ static int test_quic_forbidden_options(void)
     if (!TEST_false(SSL_get_quiet_shutdown(ssl)))
         goto err;
 
+    /* No duplication */
+    if (!TEST_ptr_null(SSL_dup(ssl)))
+        goto err;
+
     testresult = 1;
 err:
     SSL_free(ssl);