Commit Graph

3 Commits

Author SHA1 Message Date
Achim Kraus
181330b4ab Fix processing received records of wrong epoch.
Introduce a read_epoch to be used during the handshake.
Increment that, when the ccs is handled.
Drop received none matching records.

Signed-off-by: Achim Kraus <achim.kraus@bosch.io>
2021-10-04 21:05:54 +02:00
Jon Shallow
8e7c7d391c Add extended master secret support (RFC7627)
Needed to enable EC interopability with GnuTLS and Californium.

crypto.h:

Track extended_master_secret in dtls_handshake_parameters_t.

state.h:

Extended master secret hash info in dtls_hs_state_t.

global.h:

Add in #define for TLS_EXT_EXTENDED_MASTER_SECRET.

dtls.c:

Send out signature/hash algorithm in client hello so gnutls does not choose
SHA1. Verify signature/hash algorithm is supported in client hello.

Add in support for extended master secret as per RFC7627.

Allow server not to include client certificate type in server hello.

Define p before buf in stack so assert checking of buf overflow works.

Support servers that do not send back a hello verify request triggering
a second client hello.

Signed-off-by: Jon Shallow <supjps-libcoap@jpshallow.com>
2020-06-29 13:30:10 +01:00
Olaf Bergmann
e1388b3980 New initial commit 2016-02-02 18:39:21 +01:00