summaryrefslogtreecommitdiff
path: root/src/lib/libssl/ssl_err.c
diff options
context:
space:
mode:
authorjsing <>2016-11-03 16:23:30 +0000
committerjsing <>2016-11-03 16:23:30 +0000
commitd07ab8493c1e46771ae09a29033803992ac3510b (patch)
tree5b346c507a4dc36d5e4f9c2abc2489a74b5f199e /src/lib/libssl/ssl_err.c
parent870784c7c9e80385972d13782f00af20416c8144 (diff)
downloadopenbsd-d07ab8493c1e46771ae09a29033803992ac3510b.tar.gz
openbsd-d07ab8493c1e46771ae09a29033803992ac3510b.tar.bz2
openbsd-d07ab8493c1e46771ae09a29033803992ac3510b.zip
In ssl3_read_bytes(), do not process more than three consecutive TLS
records, otherwise a peer can potentially cause us to loop indefinately. Return with an SSL_ERROR_WANT_READ instead, so that the caller can choose when they want to handle further processing for this connection. ok beck@ miod@
Diffstat (limited to 'src/lib/libssl/ssl_err.c')
0 files changed, 0 insertions, 0 deletions