[gnutls-devel] GnuTLS | TLS 1.3: ignore "early_data" extension (!706)
Development of GNU's TLS library
gnutls-devel at lists.gnutls.org
Thu Jul 26 08:44:34 CEST 2018
Nikos Mavrogiannopoulos commented on a discussion on lib/record.c:
> "Discarded message[%u] due to invalid decryption\n",
> (unsigned int)
> _gnutls_uint64touint32(packet_sequence));
> +
> + /* as 0-RTT is not implemented yet, when early data is
> + * indicated, skip decryption failure up to
> + * max_early_data_size. */
> + if (session->internals.early_data_indicated &&
> + record.type == GNUTLS_APPLICATION_DATA) {
> + if (record.length > session->security_parameters.max_early_data_size - session->internals.early_data_received) {
That seems like a nice document, thanks for the pointer. It requires for `session->internals.early_data_received` to be less than or equal to `session->security_parameters.max_early_data_size`. That was not clear to me from the code above, however reading the code below it is now clear (sorry I interrupted my review yesterday at this point exactly).
--
Reply to this email directly or view it on GitLab: https://gitlab.com/gnutls/gnutls/merge_requests/706#note_90449115
You're receiving this email because of your account on gitlab.com.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.gnupg.org/pipermail/gnutls-devel/attachments/20180726/8c45eeaf/attachment-0001.html>
More information about the Gnutls-devel
mailing list