The SSL/TLS session Id context is limited to 32 bytes. Instead of - openbsd - A mirror of https://github.com/libressl/openbsd.git

diff options

author	reyk <>	2015-01-16 14:34:51 +0000
committer	reyk <>	2015-01-16 14:34:51 +0000
commit	faa149ebaec577e1fb906bab49bcab3e8f495206 (patch)
tree	607f55954a1c15abe402a97dd1b33b39adabb462 /src/lib/libc/net/inet_lnaof.c
parent	2f61f7a2aa004c93e4fd074ef11e9345d25f7283 (diff)
download	openbsd-faa149ebaec577e1fb906bab49bcab3e8f495206.tar.gz openbsd-faa149ebaec577e1fb906bab49bcab3e8f495206.tar.bz2 openbsd-faa149ebaec577e1fb906bab49bcab3e8f495206.zip

The SSL/TLS session Id context is limited to 32 bytes. Instead of

using the name of relayd relay or smtpd pki, use a 32 byte arc4random buffer that should be unique for the context. This fixes an issue in OpenSMTPD when a long pki name could break the configuration. OK gilles@ benno@

Diffstat (limited to 'src/lib/libc/net/inet_lnaof.c')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: