Fix DTLS retransmission from previous session.

For DTLS we might need to retransmit messages from the previous session so keep a copy of write context in DTLS retransmission buffers instead of replacing it after sending CCS. CVE-2013-6450.
author: Dr. Stephen Henson <steve@openssl.org> 2013-12-20 15:26:50 +0000
committer: Dr. Stephen Henson <steve@openssl.org> 2013-12-20 23:12:18 +0000
commit: 34628967f1e65dc8f34e000f0f5518e21afbfc7b (patch)
tree: c7a2fa589782c89a05845733b12df9d437140689 /ssl/ssl_locl.h
parent: a6c62f0c25a756c263a80ce52afbae888028e986 (diff)
1 files changed, 2 insertions, 0 deletions
diff --git a/ssl/ssl_locl.h b/ssl/ssl_locl.h
index 96ce9a7245..e485907748 100644
--- a/ssl/ssl_locl.h
+++ b/ssl/ssl_locl.h
@@ -621,6 +621,8 @@ extern SSL3_ENC_METHOD TLSv1_enc_data;
 extern SSL3_ENC_METHOD SSLv3_enc_data;
 extern SSL3_ENC_METHOD DTLSv1_enc_data;
 
+#define SSL_IS_DTLS(s) (s->method->version == DTLS1_VERSION)
+
 #define IMPLEMENT_tls_meth_func(version, func_name, s_accept, s_connect, \
 				s_get_meth) \
 const SSL_METHOD *func_name(void)  \
author	Dr. Stephen Henson <steve@openssl.org>	2013-12-20 15:26:50 +0000
committer	Dr. Stephen Henson <steve@openssl.org>	2013-12-20 23:12:18 +0000
commit	34628967f1e65dc8f34e000f0f5518e21afbfc7b (patch)
tree	c7a2fa589782c89a05845733b12df9d437140689 /ssl/ssl_locl.h
parent	a6c62f0c25a756c263a80ce52afbae888028e986 (diff)