CVSROOT: /cvs Module name: src Changes by: js...@cvs.openbsd.org 2020/10/10 20:59:47
Modified files: lib/libssl : tls13_legacy.c Log message: Grow init_buf before stashing a handshake message for the legacy stack. When transitioning from the TLSv1.3 stack to the legacy stack, grow init_buf before stashing the handshake message. The TLSv1.3 stack has already received the handshake message (potentially from multiple TLS records) and validated its size, however the default allocation is only for a single plaintext record, which can result in the handshake message failing to fit in certain cases. Issue noted by tb@ via tlsfuzzer. ok tb@