diff options
author | Nikos Mavrogiannopoulos <nmav@redhat.com> | 2018-05-07 09:52:32 +0200 |
---|---|---|
committer | Nikos Mavrogiannopoulos <nmav@redhat.com> | 2018-05-17 13:54:03 +0200 |
commit | f41df13ec8b77414ff8e682d8234c089bd24e7e9 (patch) | |
tree | bf9a12d81c1469c6aefa896393bd95f95cdea7f4 /lib/ext/session_ticket.c | |
parent | 9c0b15a08a48b72fe63ccd5b046ff9199212d10b (diff) | |
download | gnutls-f41df13ec8b77414ff8e682d8234c089bd24e7e9.tar.gz |
handshake: do not send TLS extensions under DTLS and vice versatmp-prohibit-tls-dtls-mix
That is, introduce the notion of TLS-only and DTLS-only extensions,
providing a framework to prevent sending extensions which are registered
for example for TLS 1.3, under DTLS and vice versa.
Resolves #440
Signed-off-by: Nikos Mavrogiannopoulos <nmav@redhat.com>
Diffstat (limited to 'lib/ext/session_ticket.c')
-rw-r--r-- | lib/ext/session_ticket.c | 4 |
1 files changed, 2 insertions, 2 deletions
diff --git a/lib/ext/session_ticket.c b/lib/ext/session_ticket.c index 7e0a0b2f8d..69dc138a42 100644 --- a/lib/ext/session_ticket.c +++ b/lib/ext/session_ticket.c @@ -63,9 +63,9 @@ const hello_ext_entry_st ext_mod_session_ticket = { .name = "Session Ticket", .tls_id = 35, .gid = GNUTLS_EXTENSION_SESSION_TICKET, - .validity = GNUTLS_EXT_FLAG_CLIENT_HELLO|GNUTLS_EXT_FLAG_TLS12_SERVER_HELLO, + .validity = GNUTLS_EXT_FLAG_TLS | GNUTLS_EXT_FLAG_DTLS | GNUTLS_EXT_FLAG_CLIENT_HELLO | + GNUTLS_EXT_FLAG_TLS12_SERVER_HELLO, .parse_type = GNUTLS_EXT_TLS, - .recv_func = session_ticket_recv_params, .send_func = session_ticket_send_params, .pack_func = session_ticket_pack, |