projects / openwrt.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 5d11e4a) | patch
[package] cyassl: add a patch to better check legacy SSLv2 client hello records
authorjow <jow@3c298f89-4303-0410-b956-a3cf2f4a3e73>
Tue, 9 Oct 2012 16:41:36 +0000 (16:41 +0000)
committerjow <jow@3c298f89-4303-0410-b956-a3cf2f4a3e73>
Tue, 9 Oct 2012 16:41:36 +0000 (16:41 +0000)
commit2d3881cc2e30025b0702e6c5888d411b0d5d9fc1
tree07dc533cba811ac4030bc23d66c2a65ceb0529detree | snapshot
parent5d11e4a29aaf23c6f473e6b0f9d60479255059e1commit | diff
[package] cyassl: add a patch to better check legacy SSLv2 client hello records

If junk data is received during SSL_accept(), cyassl will treat it as legacy SSLv2
record without performing further plausibility checks. Change the legacy code path
to return UNKNOWN_HANDSHAKE_TYPE if the value of the third byte isn't 0x01 the
hello message type.

git-svn-id: svn://svn.openwrt.org/openwrt/trunk@33675 3c298f89-4303-0410-b956-a3cf2f4a3e73
package/libs/cyassl/Makefile diff | blob | history
package/libs/cyassl/patches/200-SSL_accept-handle-hello-garbage.patch [new file with mode: 0644] blob
OpenWrt main development branch