FreeBSD Bugzilla – Attachment 144567 Details for
Bug 191799
[patch] openssl - fix regression from CVE-2014-0224 - "ccs received early"
Home
|
New
|
Browse
|
Search
|
[?]
|
Reports
|
Help
|
New Account
|
Log In
Remember
[x]
|
Forgot Password
Login:
[x]
[patch]
patch to fix "ccs received early" error
ssl_ccs.diff (text/plain), 781 bytes, created by
Andrew Daugherity
on 2014-07-11 01:25:37 UTC
(
hide
)
Description:
patch to fix "ccs received early" error
Filename:
MIME Type:
Creator:
Andrew Daugherity
Created:
2014-07-11 01:25:37 UTC
Size:
781 bytes
patch
obsolete
>Index: crypto/openssl/ssl/s3_clnt.c >=================================================================== >--- crypto/openssl/ssl/s3_clnt.c (revision 268503) >+++ crypto/openssl/ssl/s3_clnt.c (working copy) >@@ -437,16 +437,17 @@ int ssl3_connect(SSL *s) > > case SSL3_ST_CW_FINISHED_A: > case SSL3_ST_CW_FINISHED_B: > ret=ssl3_send_finished(s, > SSL3_ST_CW_FINISHED_A,SSL3_ST_CW_FINISHED_B, > s->method->ssl3_enc->client_finished_label, > s->method->ssl3_enc->client_finished_label_len); > if (ret <= 0) goto end; >+ s->s3->flags |= SSL3_FLAGS_CCS_OK; > s->state=SSL3_ST_CW_FLUSH; > > /* clear flags */ > s->s3->flags&= ~SSL3_FLAGS_POP_BUFFER; > if (s->hit) > { > s->s3->tmp.next_state=SSL_ST_OK; > if (s->s3->flags & SSL3_FLAGS_DELAY_CLIENT_FINISHED)
<b>You cannot view the attachment while viewing its details because your browser does not support IFRAMEs. <a href="attachment.cgi?id=144567">View the attachment on a separate page</a>.</b>
View Attachment As Diff
View Attachment As Raw
Actions:
View
|
Diff
Attachments on
bug 191799
: 144567