diff options
author | Richard Levitte <levitte@openssl.org> | 2014-11-28 20:40:10 +0100 |
---|---|---|
committer | Richard Levitte <levitte@openssl.org> | 2014-11-28 20:47:41 +0100 |
commit | 7a04b854d655785798d471df25ffd5036f3cc46b (patch) | |
tree | 808035b82fdd8636b6ebc1773d9f491377d7611f /crypto | |
parent | 8123d158ab6f0a6a468748c133e33c2063ff36b5 (diff) | |
download | openssl-7a04b854d655785798d471df25ffd5036f3cc46b.tar.gz |
[PR3597] Advance to the next state variant when reusing messages.
Previously, state variant was not advanced, which resulted in state
being stuck in the st1 variant (usually "_A").
This broke certificate callback retry logic when accepting connections
that were using SSLv2 ClientHello (hence reusing the message), because
their state never advanced to SSL3_ST_SR_CLNT_HELLO_C variant required
for the retry code path.
Reported by Yichun Zhang (agentzh).
Signed-off-by: Piotr Sikora <piotr@cloudflare.com>
Reviewed-by: Richard Levitte <levitte@openssl.org>
Reviewed-by: Matt Caswell <matt@openssl.org>
Diffstat (limited to 'crypto')
0 files changed, 0 insertions, 0 deletions