Mark J Cox wrote:
>
> In going through our internal code I came across some changes that we
> should look at putting into OpenSSL. I've attached a large DIFF against
> the current CVS tree (all changes in the /ssl/ directory).
Is there likely to be much more of this? Coz the longer its left the
harder it gets to incorporate...
> "This patch is a fix so that the version number in the master secret, when
> passed via RSA, checks that if TLS was proposed, but we roll back to
> SSLv3 (because the server will not accept higher), that the version
> number is 0x03,0x01, not 0x03,0x00"
>
> It also makes some changes and fixes to the SSL compression code. I
> didn't commit this to the archive as it is a fairly substantial set of
> changes that I have not tested completely.
Yep ... I say go for it. I've read through the code, and it looks like
it fixes a fair few bugs, too - the compression stuff is completely new,
isn't it? Shouldn't there be some compression code, too? Or did I miss
something?
I presume the diff was made by diffing your internal tree, patching the
current one, then diffing again? I'm just worried about accidentally
undoing existing changes...
Cheers,
Ben.
--
http://www.apache-ssl.org/ben.html
"My grandfather once told me that there are two kinds of people: those
who work and those who take the credit. He told me to try to be in the
first group; there was less competition there."
- Indira Gandhi
______________________________________________________________________
OpenSSL Project http://www.openssl.org
Development Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
