wolfSSL/wolfssl
1
0
Fork 1
mirror of https://github.com/wolfSSL/wolfssl.git synced 2026-03-06 23:44:04 +01:00
Code Issues Packages Projects Releases Wiki Activity

DTLS 1.3: allow fragmenting the second ClientHello message

Browse Source 
- DTLS 1.3 pqc support
- Add --enable-dtls-frag-ch option to enable CH fragmenting
- Send an alert when we get an empty keyshare with a cookie present to not allow for multiple HRR in one connection
- Only update the DTLS window when we have successfully processed or stored a message
- Call ssl->chGoodCb as soon as we have processed a verified full or fragmented ClientHello cookie
This commit is contained in:
Juliusz Sosinowicz
2023-09-01 16:38:52 +02:00
parent 832e0f3726
commit 85a596e54a
12 changed files with 685 additions and 122 deletions
Download Patch File Download Diff File Expand all files Collapse all files

5
examples/server/server.c
View File

@@ -3322,6 +3322,11 @@ THREAD_RETURN WOLFSSL_THREAD server_test(void* args)
}
#endif /* WOLFSSL_DTLS_CID */
#ifdef WOLFSSL_DTLS_CH_FRAG
if (doDTLS)
wolfSSL_dtls13_allow_ch_frag(ssl, 1);
#endif
#ifndef WOLFSSL_CALLBACKS
if (nonBlocking) {
#ifdef WOLFSSL_DTLS