pull Ben Lauries blind prefix injection fix for CVE-2009-3555 from

openssl 0.9.8l; crank minor version; ok djm@ deraadt@; initially from jsg@
author: markus <> 2009-11-10 09:09:40 +0000
committer: markus <> 2009-11-10 09:09:40 +0000
commit: f1d42d6eee1da63866ae153d6e369735e5a8d456 (patch)
tree: 1ee3d60cfc9aa5a4238a876f10fd267d699c4e14 /src/lib/libssl/ssl3.h
parent: bcff7dee568d670c02f6468c1970229654ec35b5 (diff)
download: openbsd-f1d42d6eee1da63866ae153d6e369735e5a8d456.tar.gz
openbsd-f1d42d6eee1da63866ae153d6e369735e5a8d456.tar.bz2
openbsd-f1d42d6eee1da63866ae153d6e369735e5a8d456.zip
1 files changed, 5 insertions, 4 deletions
diff --git a/src/lib/libssl/ssl3.h b/src/lib/libssl/ssl3.h
index 4b1e2e9834..a1a19cbfcb 100644
--- a/src/lib/libssl/ssl3.h
+++ b/src/lib/libssl/ssl3.h
@@ -326,10 +326,11 @@ typedef struct ssl3_buffer_st
 #define SSL3_CT_NUMBER                  7
-#define SSL3_FLAGS_NO_RENEGOTIATE_CIPHERS       0x0001
+#define SSL3_FLAGS_NO_RENEGOTIATE_CIPHERS               0x0001
-#define SSL3_FLAGS_DELAY_CLIENT_FINISHED        0x0002
+#define SSL3_FLAGS_DELAY_CLIENT_FINISHED                0x0002
-#define SSL3_FLAGS_POP_BUFFER                   0x0004
+#define SSL3_FLAGS_POP_BUFFER                           0x0004
-#define TLS1_FLAGS_TLS_PADDING_BUG              0x0008
+#define TLS1_FLAGS_TLS_PADDING_BUG                      0x0008
+#define SSL3_FLAGS_ALLOW_UNSAFE_LEGACY_RENEGOTIATION    0x0010
 typedef struct ssl3_state_st
        {
author	markus <>	2009-11-10 09:09:40 +0000
committer	markus <>	2009-11-10 09:09:40 +0000
commit	f1d42d6eee1da63866ae153d6e369735e5a8d456 (patch)
tree	1ee3d60cfc9aa5a4238a876f10fd267d699c4e14 /src/lib/libssl/ssl3.h
parent	bcff7dee568d670c02f6468c1970229654ec35b5 (diff)
download	openbsd-f1d42d6eee1da63866ae153d6e369735e5a8d456.tar.gz openbsd-f1d42d6eee1da63866ae153d6e369735e5a8d456.tar.bz2 openbsd-f1d42d6eee1da63866ae153d6e369735e5a8d456.zip

diff --git a/src/lib/libssl/ssl3.h b/src/lib/libssl/ssl3.h index 4b1e2e9834..a1a19cbfcb 100644 --- a/src/lib/libssl/ssl3.h +++ b/src/lib/libssl/ssl3.h
@@ -326,10 +326,11 @@ typedef struct ssl3_buffer_st
326	#define SSL3_CT_NUMBER 7	326	#define SSL3_CT_NUMBER 7
327		327
328		328
329	#define SSL3_FLAGS_NO_RENEGOTIATE_CIPHERS 0x0001	329	#define SSL3_FLAGS_NO_RENEGOTIATE_CIPHERS 0x0001
330	#define SSL3_FLAGS_DELAY_CLIENT_FINISHED 0x0002	330	#define SSL3_FLAGS_DELAY_CLIENT_FINISHED 0x0002
331	#define SSL3_FLAGS_POP_BUFFER 0x0004	331	#define SSL3_FLAGS_POP_BUFFER 0x0004
332	#define TLS1_FLAGS_TLS_PADDING_BUG 0x0008	332	#define TLS1_FLAGS_TLS_PADDING_BUG 0x0008
		333	#define SSL3_FLAGS_ALLOW_UNSAFE_LEGACY_RENEGOTIATION 0x0010
333		334
334	typedef struct ssl3_state_st	335	typedef struct ssl3_state_st
335	{	336	{