Fix ssl/s3_enc.c, ssl/t1_enc.c and ssl/s3_pkt.c so that we don't

reveal whether illegal block cipher padding was found or a MAC verification error occured. In ssl/s2_pkt.c, verify that the purported number of padding bytes is in the legal range.
2001-09-20 18:34:36 +00:00
parent 10981a5c84
commit e41c5bd730
9 changed files with 80 additions and 35 deletions
--- a/ssl/ssl2.h
+++ b/ssl/ssl2.h
@@ -189,7 +189,7 @@ typedef struct ssl2_state_st
 	unsigned char *ract_data;
 	unsigned char *wact_data;
 	unsigned char *mac_data;
-	unsigned char *pad_data;
+	unsigned char *pad_data_UNUSED; /* only for binary compatibility with 0.9.6b */

 	unsigned char *read_key;
 	unsigned char *write_key;