diff options
| author | Daiki Ueno <dueno@redhat.com> | 2018-07-16 11:30:05 +0200 |
|---|---|---|
| committer | Daiki Ueno <dueno@redhat.com> | 2018-07-24 14:43:16 +0200 |
| commit | 9d1f2253d1181213ea3fcc9357e7c6e181f3feef (patch) | |
| tree | 770d93e1e699e4e53d9756d843b38b8c1c86cc1b /lib/hello_ext.c | |
| parent | 1debc409d3f751fcf72da37ee919a1fe8cb435e4 (diff) | |
| download | gnutls-tmp-skip-zero-rtt.tar.gz | |
TLS 1.3: ignore "early_data" extensiontmp-skip-zero-rtt
As 0-RTT is still not implemented in GnuTLS, the server responds with
1-RTT, by skipping decryption failure up to max_early_data_size, as
suggested in 4.2.10 Early Data Detection.
Signed-off-by: Daiki Ueno <dueno@redhat.com>
Diffstat (limited to 'lib/hello_ext.c')
| -rw-r--r-- | lib/hello_ext.c | 2 |
1 files changed, 2 insertions, 0 deletions
diff --git a/lib/hello_ext.c b/lib/hello_ext.c index a3027130a6..81510ebb83 100644 --- a/lib/hello_ext.c +++ b/lib/hello_ext.c @@ -51,6 +51,7 @@ #include <ext/psk_ke_modes.h> #include <ext/etm.h> #include <ext/cookie.h> +#include <ext/early_data.h> #include "extv.h" #include <num.h> @@ -82,6 +83,7 @@ static hello_ext_entry_st const *extfunc[MAX_EXT_TYPES+1] = { [GNUTLS_EXTENSION_SIGNATURE_ALGORITHMS] = &ext_mod_sig, [GNUTLS_EXTENSION_KEY_SHARE] = &ext_mod_key_share, [GNUTLS_EXTENSION_COOKIE] = &ext_mod_cookie, + [GNUTLS_EXTENSION_EARLY_DATA] = &ext_mod_early_data, #ifdef ENABLE_DTLS_SRTP [GNUTLS_EXTENSION_SRTP] = &ext_mod_srtp, #endif |