commit 4d0be243192074dc1b31953b553c09a9c7a224e6
author David Benjamin <davidben@google.com> Thu Sep 01 01:10:07 2016 -0400
committer CQ bot account: commit-bot@chromium.org <commit-bot@chromium.org> Mon Sep 12 19:16:46 2016 +0000
tree fc58f5fa1a498e024bf1f3f4f8b73dbe87dbb8c9
parent 8e726eca12ff4dab5df1ea2c8fc9309d19d2974a

Only allow SSL_set_session before the handshake.

Otherwise things break horribly. Explicitly abort to help catch bugs.

Change-Id: I66e2bf8808199b3331b3adde68d73758a601eb8c
Reviewed-on: https://boringssl-review.googlesource.com/10761
Reviewed-by: Adam Langley <agl@google.com>
Commit-Queue: Adam Langley <agl@google.com>
CQ-Verified: CQ bot account: commit-bot@chromium.org <commit-bot@chromium.org>

ssl/tls13_client.c

diff --git a/ssl/tls13_client.c b/ssl/tls13_client.c
index d2d99a7..8dfb5da 100644
--- a/ssl/tls13_client.c
+++ b/ssl/tls13_client.c
@@ -228,7 +228,7 @@
       ssl3_send_alert(ssl, SSL3_AL_FATAL, SSL_AD_INTERNAL_ERROR);
       return ssl_hs_error;
     }
-    SSL_set_session(ssl, NULL);
+    ssl_set_session(ssl, NULL);
   } else {
     if (!ssl_get_new_session(ssl, 0)) {
       ssl3_send_alert(ssl, SSL3_AL_FATAL, SSL_AD_INTERNAL_ERROR);