Skip to content
  1. Jul 06, 2018
    • Matt Caswell's avatar
      Introduce the recv_max_early_data setting · 4e8548e8
      Matt Caswell authored
      
      
      Previoulsy we just had max_early_data which controlled both the value of
      max early_data that we advertise in tickets *and* the amount of early_data
      that we are willing to receive from clients. This doesn't work too well in
      the case where we want to reduce a previously advertised max_early_data
      value. In that case clients with old, stale tickets may attempt to send us
      more early data than we are willing to receive. Instead of rejecting the
      early data we abort the connection if that happens.
      
      To avoid this we introduce a new "recv_max_early_data" value. The old
      max_early_data becomes the value that is advertised in tickets while
      recv_max_early_data is the maximum we will tolerate from clients.
      
      Fixes #6647
      
      Reviewed-by: default avatarPaul Dale <paul.dale@oracle.com>
      (Merged from https://github.com/openssl/openssl/pull/6655)
      4e8548e8
  2. Jul 05, 2018
  3. Jul 04, 2018
  4. Jul 03, 2018
  5. Jul 02, 2018
  6. Jul 01, 2018
  7. Jun 29, 2018
  8. Jun 28, 2018
  9. Jun 27, 2018
  10. Jun 26, 2018
  11. Jun 25, 2018