mirror/mbedtls
1
0
Fork 0
mirror of https://github.com/Mbed-TLS/mbedtls.git synced 2025-02-11 00:40:05 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity

Add chanelog entry for fixing legacy comprssion methods issue

Browse Source 
Signed-off-by: Waleed Elmelegy <waleed.elmelegy@arm.com>
This commit is contained in:
Waleed Elmelegy 2024-08-22 16:10:10 +00:00
parent 1297309fdb
commit f669fef856
1 changed files with 7 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

7
ChangeLog.d/fix-legacy-compression-issue.txt Normal file
View File

@ -0,0 +1,7 @@
Bugfix
* Fix an issue where ssl_tls13_parse_client_hello() assumed legacy_compression_methods
length would always be zero, which is true for TLS 1.3. However, with TLS 1.3 enabled
by default, all ClientHello requests (including TLS 1.2 requests) are initially
processed by ssl_tls13_parse_client_hello() before being passed to the TLS 1.2
parsing function. This caused an issue where legacy_compression_methods
might not be zero for TLS 1.2 requests, as it is processed earlier.