Closed Bug 1418943 Opened 7 years ago Closed 7 years ago

Assert if cookie isn't set on second ClientHello

Categories

(NSS :: Libraries, enhancement)

Product:
NSS
Component:
Libraries
Type:
enhancement
Priority:
Not set
Severity:
normal

Tracking

(Not tracked)

Status:
RESOLVED FIXED
Milestone:
Future

People

(Reporter: mt, Assigned: mt)

Details

Attachments

(1 file)

Bug 1418943 - Properly handle absent cookie on second ClientHello, r?ekr
45 bytes, text/x-phabricator-request
ekr
: review+
Details | Review 
An NSS server that receives a second ClientHello that omits the cookie extension will assert:
        PORT_Assert(ss->xtnData.cookie.len);

This is not correct - the extension is received from a client, which we don't control.
Comment on attachment 8930033 [details]
Bug 1418943 - Properly handle absent cookie on second ClientHello, r?ekr

Eric Rescorla (:ekr) has approved the revision.

https://phabricator.services.mozilla.com/D262#6418
Attachment #8930033 - Flags: review+
https://hg.mozilla.org/projects/nss/rev/6d6672247fc449fb3c8831857ea72c14537f63bf
Status: NEW → RESOLVED
Closed: 7 years ago
Resolution: --- → FIXED
Target Milestone: --- → Future
You need to log in before you can comment on or make changes to this bug.

Attachment

General

Creator:
Created:
Updated:
Size: