[openssl-dev] [openssl.org #3711] [RFC PATCH] 1.0.2 regresssion: Wrong SSL version in DTLS_BAD_VER ClientHello
David Woodhouse
dwmw2 at infradead.org
Mon Mar 16 15:52:00 UTC 2015
On Mon, 2015-03-09 at 12:11 +0100, Matt Caswell via RT wrote:
> Fixed in this commit:
>
> https://github.com/openssl/openssl/commit/f7683aaf36341dc65672ac2ccdbfd4a232e3626d
Thanks. I can confirm that OpenConnect is now working with OpenSSL HEAD
again, both with DTLS1_BAD_VER talking to 'legacy' Cisco servers, and
with DTLS 1.2/AES-GCM to ocserv.
In my Copious Spare Time™ I will look at ensuring this has better test
coverage.
--
dwmw2
-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/x-pkcs7-signature
Size: 5745 bytes
Desc: not available
URL: <http://mta.openssl.org/pipermail/openssl-dev/attachments/20150316/e18d5a3e/attachment-0001.bin>
More information about the openssl-dev
mailing list