[openssl-commits] [openssl] OpenSSL source code branch OpenSSL_1_0_1-stable updated. OpenSSL_1_0_1j-93-g500d67f

Dr. Stephen Henson steve at openssl.org
Fri Jan 2 22:32:50 UTC 2015

This is an automated email from the git hooks/post-receive script. It was
generated because a ref change was pushed to the repository containing
the project "OpenSSL source code".

The branch, OpenSSL_1_0_1-stable has been updated
       via  500d67f15ac8199a39c3ba3861f71951766fbae4 (commit)
      from  40fb8587ed854eaa6bbe703a4480b5b20ff7b71c (commit)

Those revisions listed above that are new to this repository have
not appeared on any other notification email; so we list those
revisions in full, below.

- Log -----------------------------------------------------------------
commit 500d67f15ac8199a39c3ba3861f71951766fbae4
Author: Dr. Stephen Henson <steve at openssl.org>
Date:   Fri Dec 5 13:39:14 2014 +0000

    Clear existing extension state.
    When parsing ClientHello clear any existing extension state from
    SRP login and SRTP profile.
    Thanks to Karthikeyan Bhargavan for reporting this issue.
    Reviewed-by: Matt Caswell <matt at openssl.org>
    (cherry picked from commit 47606dda672a5008168f62d4b7d7f94cd2d31313)


Summary of changes:
 ssl/t1_lib.c |   10 ++++++++++
 1 file changed, 10 insertions(+)

diff --git a/ssl/t1_lib.c b/ssl/t1_lib.c
index 1a5f4c1..179b467 100644
--- a/ssl/t1_lib.c
+++ b/ssl/t1_lib.c
@@ -1005,6 +1005,16 @@ int ssl_parse_clienthello_tlsext(SSL *s, unsigned char **p, unsigned char *d, in
 		ssl_check_for_safari(s, data, d, n);
 #endif /* !OPENSSL_NO_EC */
+	if (s->srp_ctx.login != NULL)
+		{
+		OPENSSL_free(s->srp_ctx.login);
+		s->srp_ctx.login = NULL;
+		}
+	s->srtp_profile = NULL;
 	if (data >= (d+n-2))
 		goto ri_check;

OpenSSL source code

More information about the openssl-commits mailing list