Revise HelloVerifyRequest handling for DTLSv1.2. - openbsd - A mirror of https://github.com/libressl/openbsd.git

diff options

author	jsing <>	2021-02-20 08:22:55 +0000
committer	jsing <>	2021-02-20 08:22:55 +0000
commit	7271165e09ebddf4f30f14143ba85f708ff39d8d (patch)
tree	38282915160afb4f54aaf862d8797391736ce4ce /src/lib/libssl/ssl_versions.c
parent	83b6cbaae70b14b5e01f0bf2e87656e5915d40ff (diff)
download	openbsd-7271165e09ebddf4f30f14143ba85f708ff39d8d.tar.gz openbsd-7271165e09ebddf4f30f14143ba85f708ff39d8d.tar.bz2 openbsd-7271165e09ebddf4f30f14143ba85f708ff39d8d.zip

Revise HelloVerifyRequest handling for DTLSv1.2.

Per RFC 6347 section 4.2.1, the HelloVerifyRequest should always contain DTLSv1.0 - ensure this is the case on the server side, allow both DTLSv1.0 and DTLSv1.2 on the client. ok tb@

Diffstat (limited to 'src/lib/libssl/ssl_versions.c')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: