Alexander Sosedkin commented on a discussion on 
tests/suite/tls-fuzzer/gnutls-nocert-tls13.json: 
https://gitlab.com/gnutls/gnutls/-/merge_requests/2055#note_3020092478

 >       {"name" : "test-tls13-keyshare-omitted.py",
 >        "arguments": ["-p", "@PORT@"]},
 >       {"name" : "test-tls13-keyupdate.py",
 > -      "comment" : "we have limits that prohibit the running multiple 
 > messages test; app data split timeouts waiting for new session ticket",
 > +      "comment" : "we have limits that prohibit the running multiple 
 > messages test; app data split timeouts waiting for new session ticket; two 
 > KeyUpdates in one record sends bad_record_mac instead of unexpected_message",

> Handshake messages MUST NOT span key changes. Implementations MUST verify 
> that all messages immediately preceding a key change align with a record 
> boundary; if not, then they MUST terminate the connection with an 
> "unexpected_message" alert.
> [RFC 8846 5.1](https://www.ietf.org/rfc/rfc8446.html#section-5.1)

Ehh, you're right, turns out this ain't as legal as it seemed to me last night. 
Will file a ticket.

-- 
Reply to this email directly or view it on GitLab: 
https://gitlab.com/gnutls/gnutls/-/merge_requests/2055#note_3020092478
You're receiving this email because of your account on gitlab.com.


_______________________________________________
Gnutls-devel mailing list
[email protected]
http://lists.gnupg.org/mailman/listinfo/gnutls-devel
  • [gnutls-de... Read-only notification of GnuTLS library development activities
    • Re: [... Read-only notification of GnuTLS library development activities
    • Re: [... Read-only notification of GnuTLS library development activities
    • Re: [... Read-only notification of GnuTLS library development activities
    • Re: [... Read-only notification of GnuTLS library development activities
    • Re: [... Read-only notification of GnuTLS library development activities
    • Re: [... Read-only notification of GnuTLS library development activities
    • Re: [... Read-only notification of GnuTLS library development activities
    • Re: [... Read-only notification of GnuTLS library development activities
    • Re: [... Read-only notification of GnuTLS library development activities

Reply via email to