pull Ben Lauries blind prefix injection fix for CVE-2009-3555 from

openssl 0.9.8l; crank minor version; ok djm@ deraadt@; initially from jsg@
author: markus <> 2009-11-10 09:09:40 +0000
committer: markus <> 2009-11-10 09:09:40 +0000
commit: fe6c9378da6c3c76e86e1fa03619eda8e4da9408 (patch)
tree: 1ee3d60cfc9aa5a4238a876f10fd267d699c4e14 /src/lib/libssl/ssl3.h
parent: 11d78159f32f020cba13d2025ccc5caa8b71aaae (diff)
download: openbsd-fe6c9378da6c3c76e86e1fa03619eda8e4da9408.tar.gz
openbsd-fe6c9378da6c3c76e86e1fa03619eda8e4da9408.tar.bz2
openbsd-fe6c9378da6c3c76e86e1fa03619eda8e4da9408.zip
1 files changed, 5 insertions, 4 deletions
diff --git a/src/lib/libssl/ssl3.h b/src/lib/libssl/ssl3.h
index 4b1e2e9834..a1a19cbfcb 100644
--- a/src/lib/libssl/ssl3.h
+++ b/src/lib/libssl/ssl3.h
@@ -326,10 +326,11 @@ typedef struct ssl3_buffer_st
 #define SSL3_CT_NUMBER                  7
-#define SSL3_FLAGS_NO_RENEGOTIATE_CIPHERS       0x0001
+#define SSL3_FLAGS_NO_RENEGOTIATE_CIPHERS               0x0001
-#define SSL3_FLAGS_DELAY_CLIENT_FINISHED        0x0002
+#define SSL3_FLAGS_DELAY_CLIENT_FINISHED                0x0002
-#define SSL3_FLAGS_POP_BUFFER                   0x0004
+#define SSL3_FLAGS_POP_BUFFER                           0x0004
-#define TLS1_FLAGS_TLS_PADDING_BUG              0x0008
+#define TLS1_FLAGS_TLS_PADDING_BUG                      0x0008
+#define SSL3_FLAGS_ALLOW_UNSAFE_LEGACY_RENEGOTIATION    0x0010
 typedef struct ssl3_state_st
        {
author	markus <>	2009-11-10 09:09:40 +0000
committer	markus <>	2009-11-10 09:09:40 +0000
commit	fe6c9378da6c3c76e86e1fa03619eda8e4da9408 (patch)
tree	1ee3d60cfc9aa5a4238a876f10fd267d699c4e14 /src/lib/libssl/ssl3.h
parent	11d78159f32f020cba13d2025ccc5caa8b71aaae (diff)
download	openbsd-fe6c9378da6c3c76e86e1fa03619eda8e4da9408.tar.gz openbsd-fe6c9378da6c3c76e86e1fa03619eda8e4da9408.tar.bz2 openbsd-fe6c9378da6c3c76e86e1fa03619eda8e4da9408.zip

diff --git a/src/lib/libssl/ssl3.h b/src/lib/libssl/ssl3.h index 4b1e2e9834..a1a19cbfcb 100644 --- a/src/lib/libssl/ssl3.h +++ b/src/lib/libssl/ssl3.h
@@ -326,10 +326,11 @@ typedef struct ssl3_buffer_st
326	#define SSL3_CT_NUMBER 7	326	#define SSL3_CT_NUMBER 7
327		327
328		328
329	#define SSL3_FLAGS_NO_RENEGOTIATE_CIPHERS 0x0001	329	#define SSL3_FLAGS_NO_RENEGOTIATE_CIPHERS 0x0001
330	#define SSL3_FLAGS_DELAY_CLIENT_FINISHED 0x0002	330	#define SSL3_FLAGS_DELAY_CLIENT_FINISHED 0x0002
331	#define SSL3_FLAGS_POP_BUFFER 0x0004	331	#define SSL3_FLAGS_POP_BUFFER 0x0004
332	#define TLS1_FLAGS_TLS_PADDING_BUG 0x0008	332	#define TLS1_FLAGS_TLS_PADDING_BUG 0x0008
		333	#define SSL3_FLAGS_ALLOW_UNSAFE_LEGACY_RENEGOTIATION 0x0010
333		334
334	typedef struct ssl3_state_st	335	typedef struct ssl3_state_st
335	{	336	{