Couple of quick questions about this patch. Do we really need to reimplement this for DTLS? Isn't there some way DTLS could share the TLS extension code? I'd imagine that some existing TLS extensions such as servername or session tickets might be useful for DTLS as well as the EC curve ones.
I also notice we have s->version checks in several places including the standard version and the DTLS_BAD_VER. I'm wondering if checking the method would be simpler once it has been assigned e.g. ssl->method->version == DTLS1_VERSION Steve. -- Dr Stephen N. Henson. OpenSSL project core developer. Commercial tech support now available see: http://www.openssl.org ______________________________________________________________________ OpenSSL Project http://www.openssl.org Development Mailing List [email protected] Automated List Manager [email protected]
