diff options
| author | Matt Caswell <matt@openssl.org> | 2018-09-19 11:09:39 +0200 |
|---|---|---|
| committer | Matt Caswell <matt@openssl.org> | 2018-09-21 18:50:23 +0200 |
| commit | f39a02c68abc8936db24499cb3cfcba206a2e7eb (patch) | |
| tree | d06e8ab77e71213e6bae28053eb7df3ddde45ede /ssl | |
| parent | Add a test for the certificate callback (diff) | |
| download | openssl-f39a02c68abc8936db24499cb3cfcba206a2e7eb.tar.xz openssl-f39a02c68abc8936db24499cb3cfcba206a2e7eb.zip | |
Fix the max psk len for TLSv1.3
If using an old style TLSv1.2 PSK callback then the maximum possible PSK
len is PSK_MAX_PSK_LEN (256) - not 64.
Fixes #7261
Reviewed-by: Paul Dale <paul.dale@oracle.com>
(Merged from https://github.com/openssl/openssl/pull/7267)
Diffstat (limited to 'ssl')
| -rw-r--r-- | ssl/ssl_locl.h | 2 |
1 files changed, 1 insertions, 1 deletions
diff --git a/ssl/ssl_locl.h b/ssl/ssl_locl.h index 8afb117372..440a5d6c19 100644 --- a/ssl/ssl_locl.h +++ b/ssl/ssl_locl.h @@ -471,7 +471,7 @@ struct ssl_method_st { long (*ssl_ctx_callback_ctrl) (SSL_CTX *s, int cb_id, void (*fp) (void)); }; -# define TLS13_MAX_RESUMPTION_PSK_LENGTH 64 +# define TLS13_MAX_RESUMPTION_PSK_LENGTH PSK_MAX_PSK_LEN /*- * Lets make this into an ASN.1 type structure as follows |