Alexander Sosedkin commented on a discussion on tests/suite/tls-fuzzer/gnutls-nocert-tls13.json: https://gitlab.com/gnutls/gnutls/-/merge_requests/2055#note_3020092478 > {"name" : "test-tls13-keyshare-omitted.py", > "arguments": ["-p", "@PORT@"]}, > {"name" : "test-tls13-keyupdate.py", > - "comment" : "we have limits that prohibit the running multiple > messages test; app data split timeouts waiting for new session ticket", > + "comment" : "we have limits that prohibit the running multiple > messages test; app data split timeouts waiting for new session ticket; two > KeyUpdates in one record sends bad_record_mac instead of unexpected_message", > Handshake messages MUST NOT span key changes. Implementations MUST verify > that all messages immediately preceding a key change align with a record > boundary; if not, then they MUST terminate the connection with an > "unexpected_message" alert. > [RFC 8846 5.1](https://www.ietf.org/rfc/rfc8446.html#section-5.1) Ehh, you're right, turns out this ain't as legal as it seemed to me last night. Will file a ticket. -- Reply to this email directly or view it on GitLab: https://gitlab.com/gnutls/gnutls/-/merge_requests/2055#note_3020092478 You're receiving this email because of your account on gitlab.com.
_______________________________________________ Gnutls-devel mailing list [email protected] http://lists.gnupg.org/mailman/listinfo/gnutls-devel
