[Midnightbsd-cvs] src: openssl/ssl: The SSL version 3 and TLS protocols support session

laffer1 at midnightbsd.org laffer1 at midnightbsd.org
Sat Dec 5 10:29:50 EST 2009


Log Message:
-----------
The SSL version 3 and TLS protocols support session renegotiation without
cryptographically tying the new session parameters to the old parameters.

Disable renegotiation of session parameters.  This can break some software
packages, but it's rarely used.

Modified Files:
--------------
    src/crypto/openssl/ssl:
        s3_lib.c (r1.1.1.2 -> r1.2)
        (http://cvsweb.midnightbsd.org/src/crypto/openssl/ssl/s3_lib.c?r1=1.1.1.2&r2=1.2)
        s3_pkt.c (r1.1.1.2 -> r1.2)
        (http://cvsweb.midnightbsd.org/src/crypto/openssl/ssl/s3_pkt.c?r1=1.1.1.2&r2=1.2)
        s3_srvr.c (r1.4 -> r1.5)
        (http://cvsweb.midnightbsd.org/src/crypto/openssl/ssl/s3_srvr.c?r1=1.4&r2=1.5)


More information about the Midnightbsd-cvs mailing list