Only permit CCS messages if requesting middlebox compatibility mode. - openbsd - A mirror of https://github.com/libressl/openbsd.git

diff options

author	jsing <>	2022-09-11 14:33:07 +0000
committer	jsing <>	2022-09-11 14:33:07 +0000
commit	0ce983d909a52ac43f5a552e4fd367d06492b96f (patch)
tree	b26aff081d10224d8e1af85ac3458a4e3f40a8d7 /src/lib/libssl/tls13_server.c
parent	9759eb94fea75dec5994ef12ce771d94df4c63b7 (diff)
download	openbsd-0ce983d909a52ac43f5a552e4fd367d06492b96f.tar.gz openbsd-0ce983d909a52ac43f5a552e4fd367d06492b96f.tar.bz2 openbsd-0ce983d909a52ac43f5a552e4fd367d06492b96f.zip

Only permit CCS messages if requesting middlebox compatibility mode.

Currently the TLSv1.3 client always permits the server to send CCS messages. Be more strict and only permit this if the client is actually requesitng middlebox compatibility mode. ok tb@

Diffstat (limited to 'src/lib/libssl/tls13_server.c')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: