vendor/openssl/1.0.1u vendor/openssl-1.0.1

author: Jung-uk Kim <jkim@FreeBSD.org> 2016-09-22 13:05:59 +0000
committer: Jung-uk Kim <jkim@FreeBSD.org> 2016-09-22 13:05:59 +0000
commit: 2c14c598c3061ac2533f997352aa06a2266f44d9 (patch)
tree: 470894a14935f308eeac93c6cbf6cf25632e1cb1 /ssl/ssl_sess.c
parent: 47b11f985b9e0ff561a67e19674de6fbcf79281d (diff)
1 files changed, 2 insertions, 2 deletions
diff --git a/ssl/ssl_sess.c b/ssl/ssl_sess.c
index 48fc4511f1fe8..093b534bf98a5 100644
--- a/ssl/ssl_sess.c
+++ b/ssl/ssl_sess.c
@@ -382,7 +382,7 @@ static int def_generate_session_id(const SSL *ssl, unsigned char *id,
 {
     unsigned int retry = 0;
     do
-        if (RAND_pseudo_bytes(id, *id_len) <= 0)
+        if (RAND_bytes(id, *id_len) <= 0)
             return 0;
     while (SSL_has_matching_session_id(ssl, id, *id_len) &&
            (++retry < MAX_SESS_ID_ATTEMPTS)) ;
@@ -602,7 +602,7 @@ int ssl_get_prev_session(SSL *s, unsigned char *session_id, int len,
     int r;
 #endif
 
-    if (session_id + len > limit) {
+    if (limit - session_id < len) {
         fatal = 1;
         goto err;
     }
author	Jung-uk Kim <jkim@FreeBSD.org>	2016-09-22 13:05:59 +0000
committer	Jung-uk Kim <jkim@FreeBSD.org>	2016-09-22 13:05:59 +0000
commit	2c14c598c3061ac2533f997352aa06a2266f44d9 (patch)
tree	470894a14935f308eeac93c6cbf6cf25632e1cb1 /ssl/ssl_sess.c
parent	47b11f985b9e0ff561a67e19674de6fbcf79281d (diff)