[openssl-dev] FW: 1.1 master fails mac-then-encrypt test
Blumenthal, Uri - 0553 - MITLL
uri at ll.mit.edu
Mon Nov 28 23:00:25 UTC 2016
> The problem is in the test. Version negotiation happens before cipher
> selection. The test creates a connection which negotiates TLSv1.3. It
> then attempts to select a cipher. However no TLSv1.3 ciphers are offered
> by the test so the connection aborts. In truth the test is all about
> mac-then-encrypt which doesn't apply to TLSv1.3 anyway, so the test
> should just disable negotiation of that protocol version.
Thanks for explaining!
Would you be able to push a fix for this test?
-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/pkcs7-signature
Size: 5211 bytes
Desc: not available
URL: <http://mta.openssl.org/pipermail/openssl-dev/attachments/20161128/0db935f4/attachment.bin>
More information about the openssl-dev
mailing list