Hi all,
In the current release OpenSSL 0.9.8j, there are two bugs in
./crpto/x509/x509_vfy.c and ./crpto/x509/x509_cmp.c
Here are the details:
1) The return value of function X509_NAME_cmp in ./crpto/x509/x509_cmp.c is not
consistent. X509_NAME_cmp(a,b) should not only return boolean value (
In openssl/ssl/ssl_sess.c, ssl_get_new_session function
These is a callback function to set session ID after session object is
initialized. It's is a very good feature but currently only applied to server
side.
If a client want to reuse a session ID in a cross process scenario (which means
se
