[openssl-commits] [openssl] OpenSSL_1_1_1-stable update

Matt Caswell matt at openssl.org
Fri Sep 21 17:02:45 UTC 2018


The branch OpenSSL_1_1_1-stable has been updated
       via  11e1807b212e818458c2ff9ba6dfc520aee94354 (commit)
      from  aff58ee3828fec3bba8ffaeeba39bc77984fded4 (commit)


- Log -----------------------------------------------------------------
commit 11e1807b212e818458c2ff9ba6dfc520aee94354
Author: Matt Caswell <matt at openssl.org>
Date:   Wed Sep 19 10:09:39 2018 +0100

    Fix the max psk len for TLSv1.3
    
    If using an old style TLSv1.2 PSK callback then the maximum possible PSK
    len is PSK_MAX_PSK_LEN (256) - not 64.
    
    Fixes #7261
    
    Reviewed-by: Paul Dale <paul.dale at oracle.com>
    (Merged from https://github.com/openssl/openssl/pull/7267)
    
    (cherry picked from commit f39a02c68abc8936db24499cb3cfcba206a2e7eb)

-----------------------------------------------------------------------

Summary of changes:
 ssl/ssl_locl.h | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/ssl/ssl_locl.h b/ssl/ssl_locl.h
index 8afb117..440a5d6 100644
--- a/ssl/ssl_locl.h
+++ b/ssl/ssl_locl.h
@@ -471,7 +471,7 @@ struct ssl_method_st {
     long (*ssl_ctx_callback_ctrl) (SSL_CTX *s, int cb_id, void (*fp) (void));
 };
 
-# define TLS13_MAX_RESUMPTION_PSK_LENGTH      64
+# define TLS13_MAX_RESUMPTION_PSK_LENGTH      PSK_MAX_PSK_LEN
 
 /*-
  * Lets make this into an ASN.1 type structure as follows


More information about the openssl-commits mailing list