CVSROOT: /cvs
Module name: src
Changes by: js...@cvs.openbsd.org 2020/10/10 20:59:47
Modified files:
lib/libssl : tls13_legacy.c
Log message:
Grow init_buf before stashing a handshake message for the legacy stack.
When transitioning from the TLSv1.3 stack to the legacy stack, grow
init_buf before stashing the handshake message. The TLSv1.3 stack has
already received the handshake message (potentially from multiple TLS
records) and validated its size, however the default allocation is only
for a single plaintext record, which can result in the handshake message
failing to fit in certain cases.
Issue noted by tb@ via tlsfuzzer.
ok tb@
