[openssl-dev] [openssl.org #3712] TLS Renegotiation with Java is broken
Hubert Kario via RT
rt at openssl.org
Thu Jan 7 14:54:16 UTC 2016
The bug is still present in version tagged as OpenSSL_1_1_0-pre1
Moreover I've verified that the miTLS implementation[1] shows expected
behaviour - it accepts the interleaved application data everywhere but
between CCS and Finished.
Secondly, current draft of TLS 1.3 has support for updating the key[2].
1 - http://mitls.org/
2 - https://tools.ietf.org/html/draft-ietf-tls-tls13-11#section-6.3.5.3
--
Regards,
Hubert Kario
Senior Quality Engineer, QE BaseOS Security team
Web: www.cz.redhat.com
Red Hat Czech s.r.o., Purkyňova 99/71, 612 45, Brno, Czech Republic
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 819 bytes
Desc: not available
URL: <http://mta.openssl.org/pipermail/openssl-dev/attachments/20160107/a23ed4be/attachment.sig>
More information about the openssl-dev
mailing list