Client side compression algorithm sanity checks: ensure old compression

algorithm matches current and give error if compression is disabled and server requests it (shouldn't happen unless server is broken).
2010-01-01 14:39:37 +00:00
parent e6f418bcb7
commit 2be3d6ebc8
4 changed files with 27 additions and 2 deletions
--- a/ssl/s3_srvr.c
+++ b/ssl/s3_srvr.c
@@ -1159,7 +1159,7 @@ int ssl3_get_client_hello(SSL *s)
 	/* If compression is disabled we'd better not try to resume a session
 	 * using compression.
 	 */
-	if (s->session->compress_id != 0)
+	if (s->session->compress_meth != 0)
 		{
 		al=SSL_AD_INTERNAL_ERROR;
 		SSLerr(SSL_F_SSL3_GET_CLIENT_HELLO,SSL_R_INCONSISTENT_COMPRESSION);