Loading CHANGES +6 −0 Original line number Diff line number Diff line Loading @@ -12,6 +12,12 @@ *) applies to 0.9.6a/0.9.6b/0.9.6c and 0.9.7 +) applies to 0.9.7 only *) s3_srvr.c: allow sending of large client certificate lists (> 16 kB). This function was broken, as the check for a new client hello message to handle SGC did not allow these large messages. (Tracked down by "Douglas E. Engert" <deengert@anl.gov>.) [Lutz Jaenicke] *) Add alert descriptions for TLSv1 to SSL_alert_desc_string[_long](). [Lutz Jaenicke] Loading ssl/s3_srvr.c +5 −1 Original line number Diff line number Diff line Loading @@ -550,7 +550,11 @@ static int ssl3_check_client_hello(SSL *s) SSL3_ST_SR_CERT_A, SSL3_ST_SR_CERT_B, -1, SSL3_RT_MAX_PLAIN_LENGTH, #if defined(OPENSSL_SYS_MSDOS) && !defined(OPENSSL_SYS_WIN32) 1024*30, /* 30k max cert list :-) */ #else 1024*100, /* 100k max cert list :-) */ #endif &ok); if (!ok) return((int)n); s->s3->tmp.reuse_message = 1; Loading Loading
CHANGES +6 −0 Original line number Diff line number Diff line Loading @@ -12,6 +12,12 @@ *) applies to 0.9.6a/0.9.6b/0.9.6c and 0.9.7 +) applies to 0.9.7 only *) s3_srvr.c: allow sending of large client certificate lists (> 16 kB). This function was broken, as the check for a new client hello message to handle SGC did not allow these large messages. (Tracked down by "Douglas E. Engert" <deengert@anl.gov>.) [Lutz Jaenicke] *) Add alert descriptions for TLSv1 to SSL_alert_desc_string[_long](). [Lutz Jaenicke] Loading
ssl/s3_srvr.c +5 −1 Original line number Diff line number Diff line Loading @@ -550,7 +550,11 @@ static int ssl3_check_client_hello(SSL *s) SSL3_ST_SR_CERT_A, SSL3_ST_SR_CERT_B, -1, SSL3_RT_MAX_PLAIN_LENGTH, #if defined(OPENSSL_SYS_MSDOS) && !defined(OPENSSL_SYS_WIN32) 1024*30, /* 30k max cert list :-) */ #else 1024*100, /* 100k max cert list :-) */ #endif &ok); if (!ok) return((int)n); s->s3->tmp.reuse_message = 1; Loading
