Temporarily ignore NewSessionTickets for TLS1.3

author Matt Caswell <matt@openssl.org>

Thu, 29 Dec 2016 15:08:47 +0000 (15:08 +0000)

committer Matt Caswell <matt@openssl.org>

Tue, 10 Jan 2017 23:02:50 +0000 (23:02 +0000)
author Matt Caswell <matt@openssl.org>
Thu, 29 Dec 2016 15:08:47 +0000 (15:08 +0000)
committer Matt Caswell <matt@openssl.org>
Tue, 10 Jan 2017 23:02:50 +0000 (23:02 +0000)
diff --git a/ssl/record/rec_layer_s3.c b/ssl/record/rec_layer_s3.c

index 486da643d92ee90972633dcf4d9ee66098ce9201..3ffe29ad0052261300c23e92d7b976b3b70f4d3a 100644 (file)
--- a/ssl/record/rec_layer_s3.c
+++ b/ssl/record/rec_layer_s3.c
@@ -1374,6 +1374,16 @@ int ssl3_read_bytes(SSL *s, int type, int *recvd_type, unsigned char *buf,
          }
      }
  
+    /*
+     * TODO(TLS1.3): Temporarily we will just ignore NewSessionTicket messages.
+     * Later we will want to process them.
+     */
+    if (!s->server && SSL_IS_TLS13(s) && s->rlayer.handshake_fragment_len >= 4
+            && s->rlayer.handshake_fragment[0] == SSL3_MT_NEWSESSION_TICKET) {
+        SSL3_RECORD_set_read(rr);
+        goto start;
+    }
+
      /*-
       * s->rlayer.handshake_fragment_len == 4  iff  rr->type == SSL3_RT_HANDSHAKE;
       * s->rlayer.alert_fragment_len == 2      iff  rr->type == SSL3_RT_ALERT.
author	Matt Caswell <matt@openssl.org>
	Thu, 29 Dec 2016 15:08:47 +0000 (15:08 +0000)
committer	Matt Caswell <matt@openssl.org>
	Tue, 10 Jan 2017 23:02:50 +0000 (23:02 +0000)