projects / openssl.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 27315a9) | patch
Change the TLS handshake keys early if we're not doing early data
authorMatt Caswell <matt@openssl.org>
Tue, 22 Aug 2023 14:56:18 +0000 (15:56 +0100)
committerHugo Landau <hlandau@openssl.org>
Thu, 24 Aug 2023 06:43:13 +0000 (07:43 +0100)
commit84a149254f977f502dd2314169812fc6eae8c309
treee7b3c6cca339bd38e66715eec3c9bb075b564404tree | snapshot
parent27315a978e280a20c7f3ea0bfe05f6c186137625commit | diff
Change the TLS handshake keys early if we're not doing early data

We change the client TLS handshake keys as late as possible so that we
don't disturb the keys if we are writing early data. However for QUIC we
want to do this as early as possible (after ServerHello). Since we will
never do TLS early data with QUIC we just do it as early as possible if
early data is not being used.

Reviewed-by: Tomas Mraz <tomas@openssl.org>
Reviewed-by: Hugo Landau <hlandau@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/21810)
ssl/statem/statem_clnt.c diff | blob | history
ssl/statem/statem_lib.c diff | blob | history
test/recipes/75-test_quicapi_data/ssltraceref.txt diff | blob | history
Unnamed repository; edit this file 'description' to name the repository.