diff options
author | Nikos Mavrogiannopoulos <nmav@redhat.com> | 2018-05-07 09:52:32 +0200 |
---|---|---|
committer | Nikos Mavrogiannopoulos <nmav@redhat.com> | 2018-05-17 13:54:03 +0200 |
commit | f41df13ec8b77414ff8e682d8234c089bd24e7e9 (patch) | |
tree | bf9a12d81c1469c6aefa896393bd95f95cdea7f4 /lib/ext/srp.c | |
parent | 9c0b15a08a48b72fe63ccd5b046ff9199212d10b (diff) | |
download | gnutls-tmp-prohibit-tls-dtls-mix.tar.gz |
handshake: do not send TLS extensions under DTLS and vice versatmp-prohibit-tls-dtls-mix
That is, introduce the notion of TLS-only and DTLS-only extensions,
providing a framework to prevent sending extensions which are registered
for example for TLS 1.3, under DTLS and vice versa.
Resolves #440
Signed-off-by: Nikos Mavrogiannopoulos <nmav@redhat.com>
Diffstat (limited to 'lib/ext/srp.c')
-rw-r--r-- | lib/ext/srp.c | 3 |
1 files changed, 1 insertions, 2 deletions
diff --git a/lib/ext/srp.c b/lib/ext/srp.c index 2c1ab90d1a..73c7936655 100644 --- a/lib/ext/srp.c +++ b/lib/ext/srp.c @@ -47,8 +47,7 @@ const hello_ext_entry_st ext_mod_srp = { .tls_id = 12, .gid = GNUTLS_EXTENSION_SRP, .parse_type = GNUTLS_EXT_TLS, - .validity = GNUTLS_EXT_FLAG_CLIENT_HELLO, - + .validity = GNUTLS_EXT_FLAG_TLS | GNUTLS_EXT_FLAG_DTLS | GNUTLS_EXT_FLAG_CLIENT_HELLO, .recv_func = _gnutls_srp_recv_params, .send_func = _gnutls_srp_send_params, .pack_func = _gnutls_srp_pack, |