[gnutls-devel] GnuTLS | Fix non-empty session id (TLS13_APPENDIX_D4) (!1350)
Read-only notification of GnuTLS library development activities
gnutls-devel at lists.gnutls.org
Thu Nov 19 17:09:58 CET 2020
Daiki Ueno commented on a discussion on lib/handshake.c: https://gitlab.com/gnutls/gnutls/-/merge_requests/1350#note_451066704
>
> #ifdef TLS13_APPENDIX_D4
> if (max_ver->tls13_sem &&
> - session->security_parameters.session_id_size == 0) {
> + session->internals.resumed_security_parameters.session_id_size == 0) {
>
> /* Under TLS1.3 we generate a random session ID to make
> * the TLS1.3 session look like a resumed TLS1.2 session */
> - ret = _gnutls_generate_session_id(session->security_parameters.
> + ret = _gnutls_generate_session_id(session->internals.resumed_security_parameters.
Oh that's strange, as we are overriding the random function with the [static one](https://gitlab.com/gnutls/gnutls/-/blob/master/tests/tls13/prf.c#L75). Let me check.
--
Reply to this email directly or view it on GitLab: https://gitlab.com/gnutls/gnutls/-/merge_requests/1350#note_451066704
You're receiving this email because of your account on gitlab.com.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.gnupg.org/pipermail/gnutls-devel/attachments/20201119/314ea4d5/attachment.html>
More information about the Gnutls-devel
mailing list