[gnutls-devel] GnuTLS | tests/suite/tls-fuzzer: update submodules, tweak/enable tests (!2055)
Read-only notification of GnuTLS library development activities
gnutls-devel at lists.gnutls.org
Tue Jan 20 15:15:48 CET 2026
Alexander Sosedkin commented on a discussion on tests/suite/tls-fuzzer/gnutls-nocert-tls13.json: https://gitlab.com/gnutls/gnutls/-/merge_requests/2055#note_3020092478
> {"name" : "test-tls13-keyshare-omitted.py",
> "arguments": ["-p", "@PORT@"]},
> {"name" : "test-tls13-keyupdate.py",
> - "comment" : "we have limits that prohibit the running multiple messages test; app data split timeouts waiting for new session ticket",
> + "comment" : "we have limits that prohibit the running multiple messages test; app data split timeouts waiting for new session ticket; two KeyUpdates in one record sends bad_record_mac instead of unexpected_message",
> Handshake messages MUST NOT span key changes. Implementations MUST verify that all messages immediately preceding a key change align with a record boundary; if not, then they MUST terminate the connection with an "unexpected_message" alert.
> [RFC 8846 5.1](https://www.ietf.org/rfc/rfc8446.html#section-5.1)
Ehh, you're right, turns out this ain't as legal as it seemed to me last night. Will file a ticket.
--
Reply to this email directly or view it on GitLab: https://gitlab.com/gnutls/gnutls/-/merge_requests/2055#note_3020092478
You're receiving this email because of your account on gitlab.com.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.gnupg.org/pipermail/gnutls-devel/attachments/20260120/eb4621bb/attachment-0001.html>
More information about the Gnutls-devel
mailing list