[gnutls-devel] GnuTLS | add support for 0-RTT (!775)

Development of GNU's TLS library gnutls-devel at lists.gnutls.org
Mon Oct 29 17:15:32 CET 2018


Daiki Ueno commented on a discussion on lib/record.c:

> +					("REC[%p]: failed to decrypt early data, in epoch %d\n",
> +					 session,
> +						record_params->epoch);
> +				ret = GNUTLS_E_DECRYPTION_FAILED;
>  				goto sanity_check_error;
> -			}
> +			} else if (record.type == GNUTLS_APPLICATION_DATA) {
> +				size_t decrypted_length =
> +					_mbuffer_get_udata_size(decrypted);
> +				_gnutls_record_log
> +					("REC[%p]: decrypted early data with length: %d, in epoch %d\n",
> +					 session,
> +					 (int) decrypted_length,
> +					 record_params->epoch);
> +				if (decrypted_length >
> +				    session->security_parameters.max_early_data_size -

I don't think so, because `session->internals.early_data_received` must always be less than `max_early_data_size`.

-- 
Reply to this email directly or view it on GitLab: https://gitlab.com/gnutls/gnutls/merge_requests/775#note_112872061
You're receiving this email because of your account on gitlab.com.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.gnupg.org/pipermail/gnutls-devel/attachments/20181029/1bec3fa6/attachment-0001.html>


More information about the Gnutls-devel mailing list