DescriptionImplement TLS_FALLBACK_SCSV for SSLClientSocketOpenSSL.
In doing so, fix a bug in tlslite's TLS_FALLBACK_SCSV support; the fallback
alert should be sent with the client's version. Otherwise OpenSSL reports
SSL_R_UNSUPPORTED_PROTOCOL and doesn't report the alert. This behavior is
probably not wrong as, if the server responds with a TLS version higher than
what is supported, we can't really be sure of the parse.
BUG=388425
Committed: https://src.chromium.org/viewvc/chrome?view=rev&revision=285764
Patch Set 1 #Patch Set 2 : rebase #
Messages
Total messages: 12 (0 generated)
|