Google Git
Sign in
flutter / third_party / openssl / d663df2399d1d9d6015bcfd2ec87b925ea3558a2
commitd663df2399d1d9d6015bcfd2ec87b925ea3558a2[log] [tgz]
authorEmilia Kasper <emilia@openssl.org>Tue Oct 28 17:35:59 2014 +0100
committerEmilia Kasper <emilia@openssl.org>Tue Oct 28 17:35:59 2014 +0100
tree088b028800ef69149db550d83e26180df5548168
parent49b0dfc5026338f1227fdb0f9b3c18485dc459e9 [diff]
Tighten session ticket handling

Tighten client-side session ticket handling during renegotiation:
ensure that the client only accepts a session ticket if the server sends
the extension anew in the ServerHello. Previously, a TLS client would
reuse the old extension state and thus accept a session ticket if one was
announced in the initial ServerHello.

Reviewed-by: Bodo Moeller <bodo@openssl.org>
3 files changed
tree: 088b028800ef69149db550d83e26180df5548168
  1. apps/
  2. bugs/
  3. certs/
  4. crypto/
  5. demos/
  6. doc/
  7. engines/
  8. fips/
  9. include/
  10. ms/
  11. Netware/
  12. os2/
  13. perl/
  14. shlib/
  15. ssl/
  16. test/
  17. times/
  18. tools/
  19. util/
  20. VMS/
  21. .cvsignore
  22. .gitignore
  23. ACKNOWLEDGMENTS
  24. CHANGES
  25. CHANGES.SSLeay
  26. config
  27. Configure
  28. e_os.h
  29. e_os2.h
  30. FAQ
  31. GitConfigure
  32. GitMake
  33. INSTALL
  34. install.com
  35. INSTALL.DJGPP
  36. INSTALL.NW
  37. INSTALL.OS2
  38. INSTALL.VMS
  39. INSTALL.W32
  40. INSTALL.W64
  41. INSTALL.WCE
  42. LICENSE
  43. Makefile.fips
  44. Makefile.org
  45. Makefile.shared
  46. makevms.com
  47. NEWS
  48. openssl.doxy
  49. openssl.spec
  50. PROBLEMS
  51. README
  52. README.ASN1
  53. README.ECC
  54. README.ENGINE
  55. README.FIPS
  56. TABLE