artulab
projects / openbsd / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 04cba27) | patch
Stop deriving peer finished twice for TLSv1.2.
authorjsing <jsing@openbsd.org>
Sun, 2 May 2021 15:55:29 +0000 (15:55 +0000)
committerjsing <jsing@openbsd.org>
Sun, 2 May 2021 15:55:29 +0000 (15:55 +0000)
commite22ac56793c7c598bb53a1bffdbcba86a424bf2e
tree2256e12725b03fe80b36bbd43b8d49aa7faf2630tree | snapshot
parent04cba2782569480bf9984595088841a5df534b13commit | diff
Stop deriving peer finished twice for TLSv1.2.

We already derive the peer finished in ssl3_do_change_cipher_spec(), which
DTLS relies on. In the case of TLS we've been doing it twice - once in
ssl3_get_message() and once in ssl3_do_change_cipher_spec().

ok tb@
lib/libssl/ssl_both.c diff | blob | history
OpenBSD src
by Ahmet Artu Yildirim