diff options
| author | Nikos Mavrogiannopoulos <nmav@redhat.com> | 2018-05-07 09:52:32 +0200 |
|---|---|---|
| committer | Nikos Mavrogiannopoulos <nmav@redhat.com> | 2018-05-17 13:54:03 +0200 |
| commit | f41df13ec8b77414ff8e682d8234c089bd24e7e9 (patch) | |
| tree | bf9a12d81c1469c6aefa896393bd95f95cdea7f4 /lib/ext/key_share.c | |
| parent | 9c0b15a08a48b72fe63ccd5b046ff9199212d10b (diff) | |
| download | gnutls-f41df13ec8b77414ff8e682d8234c089bd24e7e9.tar.gz | |
handshake: do not send TLS extensions under DTLS and vice versatmp-prohibit-tls-dtls-mix
That is, introduce the notion of TLS-only and DTLS-only extensions,
providing a framework to prevent sending extensions which are registered
for example for TLS 1.3, under DTLS and vice versa.
Resolves #440
Signed-off-by: Nikos Mavrogiannopoulos <nmav@redhat.com>
Diffstat (limited to 'lib/ext/key_share.c')
| -rw-r--r-- | lib/ext/key_share.c | 4 |
1 files changed, 2 insertions, 2 deletions
diff --git a/lib/ext/key_share.c b/lib/ext/key_share.c index c46f0c733e..5802e47679 100644 --- a/lib/ext/key_share.c +++ b/lib/ext/key_share.c @@ -48,8 +48,8 @@ const hello_ext_entry_st ext_mod_key_share = { .tls_id = 51, .gid = GNUTLS_EXTENSION_KEY_SHARE, .parse_type = _GNUTLS_EXT_TLS_POST_CS, - .validity = GNUTLS_EXT_FLAG_CLIENT_HELLO|GNUTLS_EXT_FLAG_TLS13_SERVER_HELLO|GNUTLS_EXT_FLAG_HRR, - + .validity = GNUTLS_EXT_FLAG_TLS | GNUTLS_EXT_FLAG_CLIENT_HELLO | GNUTLS_EXT_FLAG_TLS13_SERVER_HELLO | + GNUTLS_EXT_FLAG_HRR, .recv_func = key_share_recv_params, .send_func = key_share_send_params, .pack_func = NULL, |