Google Git
Sign in
flutter / third_party / openssl / ace081c1ed98346328e251884c3bea4b41cb50ad
commitace081c1ed98346328e251884c3bea4b41cb50ad[log] [tgz]
authorMatt Caswell <matt@openssl.org>Thu Dec 29 17:11:27 2016 +0000
committerMatt Caswell <matt@openssl.org>Tue Jan 10 23:02:50 2017 +0000
tree3fc9e0107807c84d411a2916785c4e303cb9117c
parent4954fd13b3c71f0f74677b78533f1176e13de032 [diff]
Fix client application traffic secret

A misreading of the TLS1.3 spec meant we were using the handshake hashes
up to and including the Client Finished to calculate the client
application traffic secret. We should be only use up until the Server
Finished.

Reviewed-by: Rich Salz <rsalz@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/2157)
3 files changed
tree: 3fc9e0107807c84d411a2916785c4e303cb9117c
  1. .github/
  2. apps/
  3. Configurations/
  4. crypto/
  5. demos/
  6. doc/
  7. engines/
  8. external/
  9. fuzz/
  10. include/
  11. ms/
  12. os-dep/
  13. ssl/
  14. test/
  15. tools/
  16. util/
  17. VMS/
  18. boringssl
  19. .gitattributes
  20. .gitignore
  21. .gitmodules
  22. .travis-create-release.sh
  23. .travis.yml
  24. ACKNOWLEDGEMENTS
  25. appveyor.yml
  26. AUTHORS
  27. build.info
  28. CHANGES
  29. config
  30. config.com
  31. Configure
  32. CONTRIBUTING
  33. e_os.h
  34. FAQ
  35. INSTALL
  36. LICENSE
  37. Makefile.shared
  38. NEWS
  39. NOTES.DJGPP
  40. NOTES.PERL
  41. NOTES.VMS
  42. NOTES.WIN
  43. README
  44. README.ECC
  45. README.ENGINE
  46. README.FIPS