Add handshake message type checking and special case certificate requests. - openbsd - A mirror of https://github.com/libressl/openbsd.git

diff options

author	jsing <>	2019-01-19 04:02:29 +0000
committer	jsing <>	2019-01-19 04:02:29 +0000
commit	8313ffe6b8a28e94b777038dc339010d4c552ba5 (patch)
tree	fea5018f516ff6a2faceec1edac71422e5395a81 /src/lib/libcrypto/dsa/dsa_ameth.c
parent	e8d5b0fd613da2ac0ebbfd92e1cffd96c9968dd0 (diff)
download	openbsd-8313ffe6b8a28e94b777038dc339010d4c552ba5.tar.gz openbsd-8313ffe6b8a28e94b777038dc339010d4c552ba5.tar.bz2 openbsd-8313ffe6b8a28e94b777038dc339010d4c552ba5.zip

Add handshake message type checking and special case certificate requests.

Check that the handshake message type received matches that required by the state machine. However, thanks to poor state design in the TLSv1.3 RFC, there is no way to know if you're going to receive a certificate request message or not, hence we have to special case it and teach the receive handler how to handle this situation. Discussed at length with beck@ and tb@ during the hackathon. ok tb@

Diffstat (limited to 'src/lib/libcrypto/dsa/dsa_ameth.c')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: