CVSROOT:        /cvs
Module name:    src
Changes by:        2016/09/22 00:57:40

Modified files:
        lib/libssl     : t1_lib.c 

Log message:
Improve ticket validity checking when tlsext_ticket_key_cb() callback
chooses a different HMAC algorithm.
Avert memory leaks if the callback preps the HMAC in some way.

Based on openssl commit 1bbe48ab149893a78bf99c8eb8895c928900a16f
but retaining a pre-callback length check to guarantee the callback
is provided the buffer that the API claims.

ok bcook@ jsing@

Reply via email to