git.feebdaed.xyz Git - 0xmirror/openssl.git/commit

author	Joshua Rogers <MegaManSec@users.noreply.github.com>
	Sat, 11 Oct 2025 22:19:29 +0000 (06:19 +0800)
committer	Tomas Mraz <tomas@openssl.org>
	Thu, 11 Dec 2025 11:54:09 +0000 (12:54 +0100)
commit	688e4f4a5f5cb8d287ad1efbc0017cf6be628c17
tree	3e01d31a0c72f233385a397d4ac01b2061ecd25d	tree \| snapshot
parent	21d4585718a235a412115ca5c2dcdc2fe8932b61	commit \| diff

dtls: fix DTLSv1_listen msg_callback to report HelloVerifyRequest

DTLSv1_listen built the HelloVerifyRequest in wbuf but invoked
msg_callback with buf and DTLS1_RT_HEADER_LENGTH, and version 0.
That caused incorrect logging and could disclose the ClientHello
to write callbacks. Use wbuf and the actual record version for the
record header, and add a second callback that reports the handshake
message bytes. No change to on-wire behavior.

Signed-off-by: Joshua Rogers <MegaManSec@users.noreply.github.com>
Reviewed-by: Frederik Wedel-Heinen <fwh.openssl@gmail.com>
Reviewed-by: Matt Caswell <matt@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/28916)