record: ignore any ChangeCipherSpec messages under TLS1.3 handshake

Also send ChangeCipherSpec messages under TLS1.3 handshake. This is a draft-ietf-tls-tls13-22 change. Resolves #395 Signed-off-by: Nikos Mavrogiannopoulos <nmav@redhat.com>
author: Nikos Mavrogiannopoulos <nmav@redhat.com> 2018-02-22 16:12:55 +0100
committer: Nikos Mavrogiannopoulos <nmav@redhat.com> 2018-03-08 12:53:57 +0100
commit: 4a5f1b2953c1c773ff1dd3e9cc77bba605698bac (patch)
tree: 0c45466c830547e458194b59af1717d9933d12fe /lib/gnutls_int.h
parent: b2fccff200c236958cc3173c390e50460e1628be (diff)
download: gnutls-4a5f1b2953c1c773ff1dd3e9cc77bba605698bac.tar.gz
1 files changed, 5 insertions, 1 deletions
diff --git a/lib/gnutls_int.h b/lib/gnutls_int.h
index baa9c14589..c4d8524a27 100644
--- a/lib/gnutls_int.h
+++ b/lib/gnutls_int.h
@@ -134,6 +134,9 @@ typedef struct {
 #define GNUTLS_MASTER_SIZE 48
 #define GNUTLS_RANDOM_SIZE 32
 
+/* Enable: Appendix D4.  Middlebox Compatibility Mode */
+#define TLS13_APPENDIX_D4 1
+
 /* DTLS */
 #define DTLS_RETRANS_TIMEOUT 1000
 
@@ -254,9 +257,10 @@ typedef enum handshake_state_t { STATE0 = 0, STATE1, STATE2,
 	STATE15, STATE16, STATE17, STATE18, STATE19,
 	STATE20 = 20, STATE21, STATE22,
 	STATE30 = 30, STATE31, STATE40 = 40, STATE41, STATE50 = 50,
-	STATE90=90, STATE91, STATE92, STATE93,
+	STATE90=90, STATE91, STATE92, STATE93, STATE99=99,
 	STATE100=100, STATE101, STATE102, STATE103, STATE104,
 	STATE105, STATE106, STATE107, STATE108, STATE109, STATE110,
+	STATE111,
 	STATE150 /* key update */
 } handshake_state_t;
author	Nikos Mavrogiannopoulos <nmav@redhat.com>	2018-02-22 16:12:55 +0100
committer	Nikos Mavrogiannopoulos <nmav@redhat.com>	2018-03-08 12:53:57 +0100
commit	4a5f1b2953c1c773ff1dd3e9cc77bba605698bac (patch)
tree	0c45466c830547e458194b59af1717d9933d12fe /lib/gnutls_int.h
parent	b2fccff200c236958cc3173c390e50460e1628be (diff)
download	gnutls-4a5f1b2953c1c773ff1dd3e9cc77bba605698bac.tar.gz