Be selective as to when ChangeCipherSpec messages will be accepted. - openbsd - A mirror of https://github.com/libressl/openbsd.git

diff options

author	jsing <>	2014-06-05 15:46:24 +0000
committer	jsing <>	2014-06-05 15:46:24 +0000
commit	a1aa52709d3c53d1664e282da9d9833869ffcf47 (patch)
tree	645cbc9565ca3ee2061f628e95849ce560cf786f /src/regress/lib
parent	d874ba6e9641314de878a6d18eaefe826cbe532b (diff)
download	openbsd-a1aa52709d3c53d1664e282da9d9833869ffcf47.tar.gz openbsd-a1aa52709d3c53d1664e282da9d9833869ffcf47.tar.bz2 openbsd-a1aa52709d3c53d1664e282da9d9833869ffcf47.zip

Be selective as to when ChangeCipherSpec messages will be accepted.

Without this an early ChangeCipherSpec message would result in session keys being generated, along with the Finished hash for the handshake, using an empty master secret. For a detailed analysis see: https://www.imperialviolet.org/2014/06/05/earlyccs.html This is a fix for CVE-2014-0224, from OpenSSL. This issue was reported to OpenSSL by KIKUCHI Masashi. Unfortunately the recent OpenSSL commit was the first we were made aware of the issue. ok deraadt@ sthen@

Diffstat (limited to 'src/regress/lib')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: