Client side compression algorithm sanity checks: ensure old compression

algorithm matches current and give error if compression is disabled and server requests it (shouldn't happen unless server is broken).
author: Dr. Stephen Henson <steve@openssl.org> 2010-01-01 14:39:51 +0000
committer: Dr. Stephen Henson <steve@openssl.org> 2010-01-01 14:39:51 +0000
commit: 4cba294d795b6f5840280f2ba0fb7d23a61ff07e (patch)
tree: 436c3d7dbe55941ffb12bf1b770f9aab2778a108 /ssl/s3_clnt.c
parent: e642fd7a1c0f506deccab37ae37f59737d4ee6f9 (diff)
1 files changed, 22 insertions, 1 deletions
diff --git a/ssl/s3_clnt.c b/ssl/s3_clnt.c
index 3d40ba41fa..af30d1af14 100644
--- a/ssl/s3_clnt.c
+++ b/ssl/s3_clnt.c
@@ -891,10 +891,31 @@ int ssl3_get_server_hello(SSL *s)
 		SSLerr(SSL_F_SSL3_GET_SERVER_HELLO,SSL_R_UNSUPPORTED_COMPRESSION_ALGORITHM);
 		goto f_err;
 		}
+	/* If compression is disabled we'd better not try to resume a session
+	 * using compression.
+	 */
+	if (s->session->compress_meth != 0)
+		{
+		al=SSL_AD_INTERNAL_ERROR;
+		SSLerr(SSL_F_SSL3_GET_SERVER_HELLO,SSL_R_INCONSISTENT_COMPRESSION);
+		goto f_err;
+		}
 #else
 	j= *(p++);
-	if ((j == 0) || (s->options & SSL_OP_NO_COMPRESSION))
+	if (s->hit && j != (int)s->session->compress_meth)
+		{
+		al=SSL_AD_ILLEGAL_PARAMETER;
+		SSLerr(SSL_F_SSL3_GET_SERVER_HELLO,SSL_R_OLD_SESSION_COMPRESSION_ALGORITHM_NOT_RETURNED);
+		goto f_err;
+		}
+	if (j == 0)
 		comp=NULL;
+	else if (s->options & SSL_OP_NO_COMPRESSION)
+		{
+		al=SSL_AD_ILLEGAL_PARAMETER;
+		SSLerr(SSL_F_SSL3_GET_SERVER_HELLO,SSL_R_COMPRESSION_DISABLED);
+		goto f_err;
+		}
 	else
 		comp=ssl3_comp_find(s->ctx->comp_methods,j);
author	Dr. Stephen Henson <steve@openssl.org>	2010-01-01 14:39:51 +0000
committer	Dr. Stephen Henson <steve@openssl.org>	2010-01-01 14:39:51 +0000
commit	4cba294d795b6f5840280f2ba0fb7d23a61ff07e (patch)
tree	436c3d7dbe55941ffb12bf1b770f9aab2778a108 /ssl/s3_clnt.c
parent	e642fd7a1c0f506deccab37ae37f59737d4ee6f9 (diff)