diff options
| author |   miod <miod@openbsd.org> | 2014-06-13 04:29:13 +0000 |
|---|---|---|
| committer | miod <miod@openbsd.org> | 2014-06-13 04:29:13 +0000 |
| commit | d0eebffa6276f45fb0db91c36d104704cd8ac54b (patch) | |
| tree | 712b65430df2667b20028ce7e1c0243a7a7e6d5d /lib/libssl/d1_lib.c | |
| parent | sync (diff) | |
| download | wireguard-openbsd-d0eebffa6276f45fb0db91c36d104704cd8ac54b.tar.xz wireguard-openbsd-d0eebffa6276f45fb0db91c36d104704cd8ac54b.zip | |
Remove support for the `opaque PRF input' extension, which draft has expired
7 years ago and never made it into an RFC. That code wasn't compiled in
anyway unless one would define the actual on-the-wire extension id bytes;
crank libssl major.
With help and enlightenment from Brendan MacDonell.
Diffstat (limited to 'lib/libssl/d1_lib.c')
| -rw-r--r-- | lib/libssl/d1_lib.c | 4 |
1 files changed, 3 insertions, 1 deletions
diff --git a/lib/libssl/d1_lib.c b/lib/libssl/d1_lib.c index 0b7c6404c5f..13c93a77cfc 100644 --- a/lib/libssl/d1_lib.c +++ b/lib/libssl/d1_lib.c @@ -1,4 +1,4 @@ -/* $OpenBSD: d1_lib.c,v 1.19 2014/06/12 15:49:31 deraadt Exp $ */ +/* $OpenBSD: d1_lib.c,v 1.20 2014/06/13 04:29:13 miod Exp $ */ /* * DTLS implementation written by Nagendra Modadugu * (nagendra@cs.stanford.edu) for the OpenSSL project 2005. @@ -135,6 +135,7 @@ dtls1_new(SSL *s) if (d1->buffered_app_data.q) pqueue_free(d1->buffered_app_data.q); free(d1); + ssl3_free(s); return (0); } @@ -199,6 +200,7 @@ dtls1_free(SSL *s) pqueue_free(s->d1->sent_messages); pqueue_free(s->d1->buffered_app_data.q); + OPENSSL_cleanse(s->d1, sizeof *s->d1); free(s->d1); s->d1 = NULL; } |