On Tue, Oct 09, 2007, Alex Lam wrote:
> Hi,
>
> I noticed that the DTLS record layer MAC is computed using wrong input.
> * Instead of using DTLS version , it's using TLS version.
> * DTLS record layer epoch is also missing.
>
> Please find patch file attached.
>
> I am looking forward to 0.9.8f as it is closing the non-RFC compliance gap.
> When will it be released?
>
> Thanks,
> Alex.
> Index: t1_enc.c
> ===================================================================
> RCS file: /data1/Repository/openssl/ssl/t1_enc.c,v
> retrieving revision 1.35.2.3
> diff -r1.35.2.3 t1_enc.c
> 721a722
> > unsigned char dtls_sequence[8];
> 723,736c724,737
> < if (send)
> < {
Please use unified diffs (diff -u) or at least context diffs (diff -c) when
sending patches.
Ideally patches should be sent to RT, they can get mislaid when sent to the
mailing lists.
Steve.
--
Dr Stephen N. Henson. Email, S/MIME and PGP keys: see homepage
OpenSSL project core developer and freelance consultant.
Funding needed! Details on homepage.
Homepage: http://www.drh-consultancy.demon.co.uk
______________________________________________________________________
OpenSSL Project http://www.openssl.org
Development Mailing List openssl-dev@openssl.org
Automated List Manager [EMAIL PROTECTED]
