[openssl-dev] [openssl.org #4392] [PATCH] Resolve DTLS cookie and version before session resumption.
Kurt Roeckx via RT
rt at openssl.org
Sun Mar 27 23:29:46 UTC 2016
On Mon, Mar 07, 2016 at 10:03:20PM +0000, David Benjamin via RT wrote:
> Session resumption involves a version check, so version negotiation must
> happen first. Currently, the DTLS implementation cannot do session
> resumption in DTLS 1.0 because the ssl_version check always checks against
> 1.2.
>
> Switching the order also removes the need to fixup ssl_version in DTLS
> version negotiation.
This has been fixed in the master branch. The 1.0.x branches
look like they're affected too, so I'll leave this open.
Kurt
--
Ticket here: http://rt.openssl.org/Ticket/Display.html?id=4392
Please log in as guest with password guest if prompted
More information about the openssl-dev
mailing list