[gnutls-devel] GnuTLS | TLS 1.3: ignore "early_data" extension (!706)

Development of GNU's TLS library gnutls-devel at lists.gnutls.org
Mon Aug 6 10:58:26 CEST 2018


Daiki Ueno commented on a discussion on lib/record.c:

> +			goto discard;
> +		}
> +
>  		gnutls_assert();
>  		_gnutls_audit_log(session,
>  				  "Discarded message[%u] due to invalid decryption\n",
>  				  (unsigned int)
>  				  _gnutls_uint64touint32(packet_sequence));
> +
>  		goto sanity_check_error;
>  	}
>  
> +	/* FIXME: as 0-RTT is not implemented yet, when the early data
> +	 * is indicated and the record is properly decrypted, treat it
> +	 * as the start of client's second flight. */
> +	session->internals.hsk_flags &= ~HSK_EARLY_DATA_IN_FLIGHT;

Yes that sounds like a good idea; I have consolidated all the early data related conditions in to a single `if`.

-- 
Reply to this email directly or view it on GitLab: https://gitlab.com/gnutls/gnutls/merge_requests/706#note_92655175
You're receiving this email because of your account on gitlab.com.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.gnupg.org/pipermail/gnutls-devel/attachments/20180806/94c71ff6/attachment.html>


More information about the Gnutls-devel mailing list