wbrawner/openssl
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
openssl/ssl
History
Kazuki Yamaguchi b04f947941 Fix NPN protocol name list validation 
Since 50932c4 "PACKETise ServerHello processing",
ssl_next_proto_validate() incorrectly allows empty protocol name.
draft-agl-tls-nextprotoneg-04[1] says "Implementations MUST ensure that
the empty string is not included and that no byte strings are
truncated."
This patch restores the old correct behavior.

[1] https://tools.ietf.org/html/draft-agl-tls-nextprotoneg-04

Reviewed-by: Emilia Käsper <emilia@openssl.org>
Reviewed-by: Matt Caswell <matt@openssl.org>
2016-05-16 11:45:25 +01:00
..
record ssl/record/rec_layer_s3.c: fix typo from previous commit. 2016-05-02 15:23:22 +02:00
statem Increment size limit for ClientHello messages 2016-05-14 07:51:28 -04:00
bio_ssl.c Fix BIO_CTRL_DUP for an SSL BIO 2016-04-27 09:20:11 +01:00
build.info Update build.info files for auto-init/de-init 2016-02-09 15:11:38 +00:00
d1_lib.c Improve heartbeats coding style 2016-05-05 16:30:35 +01:00
d1_msg.c Remove /* foo.c */ comments 2016-01-26 16:40:43 -05:00
d1_srtp.c Free any existing SRTP connection profile 2016-05-09 10:25:34 +01:00
methods.c Allow different protocol version when trying to reuse a session 2016-03-27 23:58:50 +02:00
packet_locl.h Refactor ClientHello extension parsing 2016-03-03 13:53:26 +01:00
pqueue.c Remove an unused function 2016-04-11 14:31:26 +01:00
s3_cbc.c Remove /* foo.c */ comments 2016-01-26 16:40:43 -05:00
s3_enc.c various spelling fixes 2016-04-28 14:22:26 -04:00
s3_lib.c Don't use GOST ciphersuites with DTLS. 2016-05-12 12:02:38 +01:00
s3_msg.c Implement write pipeline support in libssl 2016-03-07 21:39:27 +00:00
ssl_asn1.c Remove /* foo.c */ comments 2016-01-26 16:40:43 -05:00
ssl_cert.c various spelling fixes 2016-04-28 14:22:26 -04:00
ssl_ciph.c Fix building with -DCHARSET_EBCDIC 2016-04-29 15:04:15 +01:00
ssl_conf.c New SSL test framework 2016-04-05 13:44:46 +02:00
ssl_err.c Fix an error code spelling. 2016-04-28 14:22:26 -04:00
ssl_init.c Remove OPENSSL_NO_SHA guards 2016-04-13 21:25:24 +01:00
ssl_lib.c Unify <TYPE>_up_ref methods signature and behaviour. 2016-05-16 10:17:33 +01:00
ssl_locl.h IRIX fixes. 2016-05-10 08:44:51 +02:00
ssl_mcnf.c Remove /* foo.c */ comments 2016-01-26 16:40:43 -05:00
ssl_rsa.c Don't leak memory if realloc fails. 2016-05-12 12:02:38 +01:00
ssl_sess.c Add checks on CRYPTO_new_ex_data return value 2016-04-28 14:37:41 -04:00
ssl_stat.c Use return "" not set a var and return. 2016-03-31 16:27:52 -04:00
ssl_txt.c various spelling fixes 2016-04-28 14:22:26 -04:00
ssl_utst.c Fix build-break 2016-02-15 10:17:12 -05:00
t1_enc.c Remove #error from include files. 2016-03-20 19:48:36 -04:00
t1_ext.c Don't leak memory if realloc fails. 2016-05-12 12:02:38 +01:00
t1_lib.c Fix NPN protocol name list validation 2016-05-16 11:45:25 +01:00
t1_reneg.c Remove outdated DEBUG flags. 2016-02-18 17:14:50 -05:00
t1_trce.c Fix enable-ssl-trace no-nextprotoneg. 2016-04-27 12:36:30 +01:00
tls_srp.c Remove /* foo.c */ comments 2016-01-26 16:40:43 -05:00