]> granicus.if.org Git - openssl/commit
projects / openssl / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: b2e8bd7) | patch
Initialize the session_id
authorKurt Roeckx <kurt@roeckx.be>
Sun, 5 Jun 2016 21:34:57 +0000 (23:34 +0200)
committerKurt Roeckx <kurt@roeckx.be>
Tue, 14 Jun 2016 17:30:36 +0000 (19:30 +0200)
commit947f3156ecedbc62e21da3569fc291166b3bc086
tree319270256fdc64b850c0f8ddaeeab0ea18f1ac67tree | snapshot
parentb2e8bd7bd555ad6826dd44f38c68425d92e86e95commit | diff
Initialize the session_id

ssl_session_hash() always looks at the first 4 bytes, regardless of the length.
A client can send a session id that's shorter, and the callback could also
generate one that's shorter.  So we make sure that the rest of the buffer is
initliazed to 0 so that we always calculate the same hash.

Found by tis-interpreter, also previously reported as RT #2871

Reviewed-by: Rich Salz <rsalz@openssl.org>
MR: #2911
ssl/ssl_sess.c diff | blob | history
Unnamed repository; edit this file 'description' to name the repository.