Verify that only NULL compression is sent in TLSv1.3 ClientHello (1fe35494) · Commits · CYBER - Cyber Security / TS 103 523 MSP / TLMSP / TLMSP OpenSSL

Commit 1fe35494 authored May 08, 2017 by

Matt Caswell

Verify that only NULL compression is sent in TLSv1.3 ClientHello



It is illegal in a TLSv1.3 ClientHello to send anything other than the
NULL compression method. We should send an alert if we find anything else
there. Previously we were ignoring this error.

Reviewed-by: Rich Salz <rsalz@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/3410)

parent 068e3d73

Hide whitespace changes

Inline Side-by-side

Please register or to comment