0f44ba58ad
using SSL-Bump. - int overflow with extension parsing: char << 8 into a short http://www.squid-cache.org/Versions/v3/3.5/changesets/squid-3.5-13915.patch - {Client,Server}Hello parsing; when checking for TLS extensions, don't check for bytes following compression_method in the _whole_ message, only in the *Hello part ("does not account for the fact that the message may contain more than just ServerHello"). http://www.squid-cache.org/Versions/v3/3.5/changesets/squid-3.5-13915.patch