Google Git
Sign in
boringssl / boringssl.git / 93de5e5c11ae343b35ad06f029f220e03200953f
commit93de5e5c11ae343b35ad06f029f220e03200953f[log] [tgz]
authorDavid Benjamin <davidben@chromium.org>Fri Apr 17 22:33:25 2015 -0400
committerAdam Langley <agl@google.com>Mon Apr 20 18:55:20 2015 +0000
tree47578f736b1a2605f3b9d8cfb24d7e9db24a7075
parent3fa27774b40d34b8be6326bb3ab2da6498752c7f [diff]
Reject empty cipher suite lists early.

See upstream's 3ae91cfb327c9ed689b9aaf7bca01a3f5a0657cb.

I misread that code and thought it was allowing empty cipher suites when there
*is* a session ID, but it was allowing them when there isn't. Which doesn't
make much sense because it'll get rejected later anyway. (Verified by toying
with handshake_client.go.)

Change-Id: Ia870a1518bca36fce6f3018892254f53ab49f460
Reviewed-on: https://boringssl-review.googlesource.com/4401
Reviewed-by: Adam Langley <agl@google.com>
1 file changed
tree: 47578f736b1a2605f3b9d8cfb24d7e9db24a7075
  1. crypto/
  2. decrepit/
  3. doc/
  4. include/
  5. ssl/
  6. tool/
  7. util/
  8. .clang-format
  9. .gitignore
  10. BUILDING
  11. CMakeLists.txt
  12. codereview.settings
  13. STYLE