Do not allow dropping Extended Master Secret extension on renegotiaton

Abort renegotiation if server receives client hello with Extended Master Secret extension dropped in comparison to the initial session. Fixes #9754 Reviewed-by: Matt Caswell <matt@openssl.org> (Merged from https://github.com/openssl/openssl/pull/12099)
author: Tomas Mraz <tmraz@fedoraproject.org> 2020-06-04 11:40:29 +0200
committer: Tomas Mraz <tmraz@fedoraproject.org> 2020-06-11 09:07:28 +0200
commit: 4b7097025305b219694dd8b04f84155cd12fb71d (patch)
tree: fdc4ebd34760e73c48f7906224481bd1a5371c4a /CHANGES
parent: 5bd03afcbe6e6fd7dba2d85d5c67a5a0140b4a7d (diff)
1 files changed, 4 insertions, 0 deletions
diff --git a/CHANGES b/CHANGES
index 8b2fd3f8bd..ae0d232526 100644
--- a/CHANGES
+++ b/CHANGES
@@ -9,6 +9,10 @@
 
  Changes between 1.1.1g and 1.1.1h [xx XXX xxxx]
 
+  *) Handshake now fails if Extended Master Secret extension is dropped
+     on renegotiation.
+     [Tomas Mraz]
+
   *) The Oracle Developer Studio compiler will start reporting deprecated APIs
 
  Changes between 1.1.1f and 1.1.1g [21 Apr 2020]
author	Tomas Mraz <tmraz@fedoraproject.org>	2020-06-04 11:40:29 +0200
committer	Tomas Mraz <tmraz@fedoraproject.org>	2020-06-11 09:07:28 +0200
commit	4b7097025305b219694dd8b04f84155cd12fb71d (patch)
tree	fdc4ebd34760e73c48f7906224481bd1a5371c4a /CHANGES
parent	5bd03afcbe6e6fd7dba2d85d5c67a5a0140b4a7d (diff)