Always require an advertised NewSessionTicket message. (de2c7504) · Commits · CYBER - Cyber Security / TS 103 523 MSP / TLMSP / TLMSP OpenSSL

CHANGES

+8 −0

Original line number	Diff line number	Diff line
		@@ -310,6 +310,10 @@
		the extension anew in the ServerHello. Previously, a TLS client would
		reuse the old extension state and thus accept a session ticket if one was
		announced in the initial ServerHello.

		Similarly, ensure that the client requires a session ticket if one
		was advertised in the ServerHello. Previously, a TLS client would
		ignore a missing NewSessionTicket message.
		[Emilia Käsper]

		*) Accelerated NIST P-256 elliptic curve implementation for x86_64
		@@ -639,6 +643,10 @@
		the extension anew in the ServerHello. Previously, a TLS client would
		reuse the old extension state and thus accept a session ticket if one was
		announced in the initial ServerHello.

		Similarly, ensure that the client requires a session ticket if one
		was advertised in the ServerHello. Previously, a TLS client would
		ignore a missing NewSessionTicket message.
		[Emilia Käsper]

		Changes between 1.0.1i and 1.0.1j [15 Oct 2014]

+1 −12

Original line number	Diff line number	Diff line
		@@ -2288,24 +2288,13 @@ int ssl3_get_new_session_ticket(SSL *s)
		n=s->method->ssl_get_message(s,
		SSL3_ST_CR_SESSION_TICKET_A,
		SSL3_ST_CR_SESSION_TICKET_B,
		-1,
		SSL3_MT_NEWSESSION_TICKET,
		16384,
		&ok);

		if (!ok)
		return((int)n);

		if (s->s3->tmp.message_type == SSL3_MT_FINISHED)
		{
		s->s3->tmp.reuse_message=1;
		return(1);
		}
		if (s->s3->tmp.message_type != SSL3_MT_NEWSESSION_TICKET)
		{
		al=SSL_AD_UNEXPECTED_MESSAGE;
		SSLerr(SSL_F_SSL3_GET_NEW_SESSION_TICKET,SSL_R_BAD_MESSAGE_TYPE);
		goto f_err;
		}
		if (n < 6)
		{
		/* need at least ticket_lifetime_hint + ticket length */