diff options
author | Geoff Thorpe <geoff@openssl.org> | 2001-02-23 00:02:56 +0000 |
---|---|---|
committer | Geoff Thorpe <geoff@openssl.org> | 2001-02-23 00:02:56 +0000 |
commit | f85c9904c65204cbb6d97814ddf23431c31d1509 (patch) | |
tree | 40d32f66960b8e9806690844fe65ff80b4b25bae /crypto | |
parent | 48bf4aae24bf1f8fd63067f08ccd5f3ea827f478 (diff) | |
download | openssl-new-f85c9904c65204cbb6d97814ddf23431c31d1509.tar.gz |
Fix an oversight - when checking a potential session ID for conflicts with
an SSL_CTX's session cache, it is necessary to compare the ssl_version at
the same time (a conflict is defined, courtesy of SSL_SESSION_cmp(), as a
matching id/id_length pair and a matching ssl_version). However, the
SSL_SESSION that will result from the current negotiation does not
necessarily have the same ssl version as the "SSL_METHOD" in use by the
SSL_CTX - part of the work in a handshake is to agree on an ssl version!
This is fixed by having the check function accept an SSL pointer rather
than the SSL_CTX it belongs to.
[Thanks to Lutz for illuminating the full extent of my stupidity]
Diffstat (limited to 'crypto')
0 files changed, 0 insertions, 0 deletions