openssl

History

Matt Caswell 524420d845 Check TLSv1.3 ServerHello, Finished and KeyUpdates are on record boundary In TLSv1.3 the above messages signal a key change. The spec requires that the end of these messages must align with a record boundary. We can detect this by checking for decrypted but as yet unread record data sitting in OpenSSL buffers at the point where we process the messages. Reviewed-by: Rich Salz <rsalz@openssl.org> (Merged from https://github.com/openssl/openssl/pull/2875)	2017-03-07 16:41:25 +00:00
..
internal	Add -Wundef to --strict-warnings options.	2017-02-24 09:21:59 +01:00
openssl	Check TLSv1.3 ServerHello, Finished and KeyUpdates are on record boundary	2017-03-07 16:41:25 +00:00

Matt Caswell 524420d845 Check TLSv1.3 ServerHello, Finished and KeyUpdates are on record boundary

In TLSv1.3 the above messages signal a key change. The spec requires that
the end of these messages must align with a record boundary. We can detect
this by checking for decrypted but as yet unread record data sitting in
OpenSSL buffers at the point where we process the messages.

Reviewed-by: Rich Salz <rsalz@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/2875)

2017-03-07 16:41:25 +00:00

internal

Add -Wundef to --strict-warnings options.

2017-02-24 09:21:59 +01:00

openssl

Check TLSv1.3 ServerHello, Finished and KeyUpdates are on record boundary

2017-03-07 16:41:25 +00:00