diff options
| author | Dr. Stephen Henson <steve@openssl.org> | 2011-04-29 22:56:51 +0000 |
|---|---|---|
| committer | Dr. Stephen Henson <steve@openssl.org> | 2011-04-29 22:56:51 +0000 |
| commit | 7409d7ad517650db332ae528915a570e4e0ab88b (patch) | |
| tree | 30ef3e18eff537854b4e443080bfb1f96c0fef12 /ssl/s3_pkt.c | |
| parent | 08557cf22cd7c337d7430c32fb21ed29a77a8131 (diff) | |
Initial incomplete TLS v1.2 support. New ciphersuites added, new version
checking added, SHA256 PRF support added.
At present only RSA key exchange ciphersuites work with TLS v1.2 as the
new signature format is not yet implemented.
Diffstat (limited to 'ssl/s3_pkt.c')
| -rw-r--r-- | ssl/s3_pkt.c | 4 |
1 files changed, 3 insertions, 1 deletions
diff --git a/ssl/s3_pkt.c b/ssl/s3_pkt.c index 536d0949f9..f6e31e9c3d 100644 --- a/ssl/s3_pkt.c +++ b/ssl/s3_pkt.c @@ -1319,7 +1319,9 @@ start: { default: #ifndef OPENSSL_NO_TLS - /* TLS just ignores unknown message types */ + /* TLS up to v1.1 just ignores unknown message types: + * TLS v1.2 give an unexpected message alert. + */ if (s->version >= TLS1_VERSION && s->version <= TLS1_1_VERSION) { rr->length = 0; |