[openssl-dev] 1.1.0-pre4: ALPN mismatch terminates connection

Short, Todd tshort at akamai.com
Fri Mar 18 14:43:34 UTC 2016

The change was actually introduced earlier (see: https://github.com/openssl/openssl/commit/0621786).

GH891 (https://github.com/openssl/openssl/commit/817cd0d52f0462039d1fe60462150be7f59d2002) moved the ALPN processing later so that the SSL_CTX determined from SNI can be used, rather than the original SSL_CTX.

-Todd Short
// tshort at akamai.com<mailto:tshort at akamai.com>
// "One if by land, two if by sea, three if by the Internet."

On Mar 17, 2016, at 6:28 AM, Christian Heimes <christian at python.org<mailto:christian at python.org>> wrote:

On 2016-03-17 11:08, Christian Heimes wrote:

I think I found a regression in 1.1.0-pre4's ALPN code.

And here is a fix: https://github.com/openssl/openssl/pull/891

openssl-dev mailing list
To unsubscribe: https://mta.openssl.org/mailman/listinfo/openssl-dev

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://mta.openssl.org/pipermail/openssl-dev/attachments/20160318/37a960d3/attachment-0001.html>

More information about the openssl-dev mailing list