aboutsummaryrefslogtreecommitdiffstats
path: root/package/libs/cyassl/patches/200-SSL_accept-handle-hello-garbage.patch
diff options
context:
space:
mode:
authorJo-Philipp Wich <jow@openwrt.org>2013-10-29 09:53:48 +0000
committerJo-Philipp Wich <jow@openwrt.org>2013-10-29 09:53:48 +0000
commit8e2106488a812dbb316776940a3b552a31b88549 (patch)
treec49b945da7e46ba049138a88a082cf0dfa37326a /package/libs/cyassl/patches/200-SSL_accept-handle-hello-garbage.patch
parentf7ccdbec754cf1d626524db1e65e9a86243424de (diff)
downloadupstream-8e2106488a812dbb316776940a3b552a31b88549.tar.gz
upstream-8e2106488a812dbb316776940a3b552a31b88549.tar.bz2
upstream-8e2106488a812dbb316776940a3b552a31b88549.zip
Revert "[cyassl]: upgrade to 2.8.0"
Reverts the CyaSSL version bump for now since the update completely broke trunk building due to incompatible changes in the IO callback API which in turn breaks the core ustream-ssl package. Signed-off-by: Jo-Philipp Wich <jow@openwrt.org> SVN-Revision: 38576
Diffstat (limited to 'package/libs/cyassl/patches/200-SSL_accept-handle-hello-garbage.patch')
-rw-r--r--package/libs/cyassl/patches/200-SSL_accept-handle-hello-garbage.patch13
1 files changed, 13 insertions, 0 deletions
diff --git a/package/libs/cyassl/patches/200-SSL_accept-handle-hello-garbage.patch b/package/libs/cyassl/patches/200-SSL_accept-handle-hello-garbage.patch
new file mode 100644
index 0000000000..4a6b8da67e
--- /dev/null
+++ b/package/libs/cyassl/patches/200-SSL_accept-handle-hello-garbage.patch
@@ -0,0 +1,13 @@
+--- a/src/cyassl_int.c
++++ b/src/cyassl_int.c
+@@ -1588,6 +1588,10 @@
+ b1 =
+ ssl->buffers.inputBuffer.buffer[ssl->buffers.inputBuffer.idx++];
+ ssl->curSize = ((b0 & 0x7f) << 8) | b1;
++
++ /* does not appear to a be a SSLv2 client hello */
++ if ( ssl->buffers.inputBuffer.buffer[ssl->buffers.inputBuffer.idx] != 1 )
++ return UNKNOWN_HANDSHAKE_TYPE;
+ }
+ else {
+ ssl->options.processReply = getRecordLayerHeader;