On Tue, Oct 09, 2007, Alex Lam wrote: > Hi, > > I noticed that the DTLS record layer MAC is computed using wrong input. > * Instead of using DTLS version , it's using TLS version. > * DTLS record layer epoch is also missing. > > Please find patch file attached. > > I am looking forward to 0.9.8f as it is closing the non-RFC compliance gap. > When will it be released? > > Thanks, > Alex.
> Index: t1_enc.c > =================================================================== > RCS file: /data1/Repository/openssl/ssl/t1_enc.c,v > retrieving revision 1.35.2.3 > diff -r1.35.2.3 t1_enc.c > 721a722 > > unsigned char dtls_sequence[8]; > 723,736c724,737 > < if (send) > < { Please use unified diffs (diff -u) or at least context diffs (diff -c) when sending patches. Ideally patches should be sent to RT, they can get mislaid when sent to the mailing lists. Steve. -- Dr Stephen N. Henson. Email, S/MIME and PGP keys: see homepage OpenSSL project core developer and freelance consultant. Funding needed! Details on homepage. Homepage: http://www.drh-consultancy.demon.co.uk ______________________________________________________________________ OpenSSL Project http://www.openssl.org Development Mailing List openssl-dev@openssl.org Automated List Manager [EMAIL PROTECTED]