artulab
projects / openbsd / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 2daeb91) | patch
Revise HelloVerifyRequest handling for DTLSv1.2.
authorjsing <jsing@openbsd.org>
Sat, 20 Feb 2021 08:22:55 +0000 (08:22 +0000)
committerjsing <jsing@openbsd.org>
Sat, 20 Feb 2021 08:22:55 +0000 (08:22 +0000)
commit4ddbf8556585183aac057df8d65818a2b90ef9bd
treebf1da6bc9064b28d738597d42b0e1be7aae7ac99tree | snapshot
parent2daeb91f074ac9f9bb87cdb2a844cc04a7b1dd2bcommit | diff
Revise HelloVerifyRequest handling for DTLSv1.2.

Per RFC 6347 section 4.2.1, the HelloVerifyRequest should always contain
DTLSv1.0 - ensure this is the case on the server side, allow both DTLSv1.0
and DTLSv1.2 on the client.

ok tb@
lib/libssl/ssl_clnt.c diff | blob | history
lib/libssl/ssl_srvr.c diff | blob | history
OpenBSD src
by Ahmet Artu Yildirim