Garbage collect s->internal->type - openbsd - A mirror of https://github.com/libressl/openbsd.git

diff options

author	tb <>	2021-03-27 17:56:28 +0000
committer	tb <>	2021-03-27 17:56:28 +0000
commit	c181c81fb01592ad1d49ebf7afa9676c41a32aaf (patch)
tree	ac68380783b8a8e28d9f271506951e261e2e33a4 /src/lib/libcrypto/evp/p_lib.c
parent	5d4b8b6f9a8de0dda3e5c12178bbb427e7f32037 (diff)
download	openbsd-c181c81fb01592ad1d49ebf7afa9676c41a32aaf.tar.gz openbsd-c181c81fb01592ad1d49ebf7afa9676c41a32aaf.tar.bz2 openbsd-c181c81fb01592ad1d49ebf7afa9676c41a32aaf.zip

Garbage collect s->internal->type

This variable is used in the legacy stack to decide whether we are a server or a client. That's what s->server is for... The new TLSv1.3 stack failed to set s->internal->type, which resulted in hilarious mishandling of previous_{client,server}_finished. Indeed, both client and server would first store the client's verify_data in previous_server_finished and later overwrite it with the server's verify_data. Consequently, renegotiation has been completely broken for more than a year. In fact, server side renegotiation was broken during the 6.5 release cycle. Clearly, no-one uses this. This commit fixes client side renegotiation and restores the previous behavior of SSL_get_client_CA_list(). Server side renegotiation will be fixed in a later commit. ok jsing

Diffstat (limited to 'src/lib/libcrypto/evp/p_lib.c')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: