diff options
author | Tomas Mraz <tmraz@fedoraproject.org> | 2020-06-04 11:40:29 +0200 |
---|---|---|
committer | Tomas Mraz <tmraz@fedoraproject.org> | 2020-06-11 09:07:28 +0200 |
commit | 4b7097025305b219694dd8b04f84155cd12fb71d (patch) | |
tree | fdc4ebd34760e73c48f7906224481bd1a5371c4a /CHANGES | |
parent | 5bd03afcbe6e6fd7dba2d85d5c67a5a0140b4a7d (diff) |
Do not allow dropping Extended Master Secret extension on renegotiaton
Abort renegotiation if server receives client hello with Extended Master
Secret extension dropped in comparison to the initial session.
Fixes #9754
Reviewed-by: Matt Caswell <matt@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/12099)
Diffstat (limited to 'CHANGES')
-rw-r--r-- | CHANGES | 4 |
1 files changed, 4 insertions, 0 deletions
@@ -9,6 +9,10 @@ Changes between 1.1.1g and 1.1.1h [xx XXX xxxx] + *) Handshake now fails if Extended Master Secret extension is dropped + on renegotiation. + [Tomas Mraz] + *) The Oracle Developer Studio compiler will start reporting deprecated APIs Changes between 1.1.1f and 1.1.1g [21 Apr 2020] |