By design, our state machine is a DAG contrary to the state machine in - openbsd - A mirror of https://github.com/libressl/openbsd.git

diff options

author	tb <>	2019-04-05 20:23:38 +0000
committer	tb <>	2019-04-05 20:23:38 +0000
commit	55bc1fb8c12e9ebee84e4f4cd679dc16b3000b2c (patch)
tree	6f5b00fafa4585971679b89854e3ba9289deccf5 /src/regress/lib/libssl/handshake/handshake_table.c
parent	d81e0a2e2b99c3aa745b51cb8193793f267d2a22 (diff)
download	openbsd-55bc1fb8c12e9ebee84e4f4cd679dc16b3000b2c.tar.gz openbsd-55bc1fb8c12e9ebee84e4f4cd679dc16b3000b2c.tar.bz2 openbsd-55bc1fb8c12e9ebee84e4f4cd679dc16b3000b2c.zip

By design, our state machine is a DAG contrary to the state machine in

the spec. To avoid the obvious loop in the RFC's state machine, we added a CLIENT_HELLO_RETRY state which is a second ClientHello with special rules. There is, however, no state to react to this second client hello. This adds a matching SERVER_HELLO_RETRY state to the handshakes table. This means in particular that the WITH_HRR state cannot be set in tls13_server_hello_recv(), so remove this now dead check. ok jsing

Diffstat (limited to 'src/regress/lib/libssl/handshake/handshake_table.c')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: