TLS improvements

Use constant time operations when checking CBC padding in TLS decryption Fix a bug in decoding ClientHellos that prevented DTLS rehandshakes from working: on decode the session id and hello cookie would be swapped, causing confusion between client and server. Various changes in the service of finding the above DTLS bug that should have been done before now anyway - better control of handshake timeouts (via TLS::Policy), better reporting of handshake state in the case of an error, and finally expose the facility for per-message application callbacks.
author: Jack Lloyd <[email protected]> 2015-10-25 22:25:40 -0400
committer: Jack Lloyd <[email protected]> 2015-10-25 22:25:40 -0400
commit: b2da74ca508745f00bb3d6b35cbe34d5031e27e7 (patch)
tree: 032fafd34f178af3b66877d52897f2e14359adaf /doc/news.rst
parent: 2d078053b1ac7c1e2316892d8634c386288ee159 (diff)
1 files changed, 2 insertions, 0 deletions
diff --git a/doc/news.rst b/doc/news.rst
index 72ab4ad9f..61df06d83 100644
--- a/doc/news.rst
+++ b/doc/news.rst
@@ -35,6 +35,8 @@ Version 1.11.22, Not Yet Released
   deriving the next value by squaring the previous ones. The reinitializion
   interval can be controlled by the build.h parameter BOTAN_BLINDING_REINIT_INTERVAL.
 
+* A bug decoding DTLS client hellos prevented session resumption for suceeding.
+
 * DL_Group now prohibits creating a group smaller than 1024 bits.
 
 * Add System_RNG type. Previously the global system RNG was only accessible via
author	Jack Lloyd <[email protected]>	2015-10-25 22:25:40 -0400
committer	Jack Lloyd <[email protected]>	2015-10-25 22:25:40 -0400
commit	b2da74ca508745f00bb3d6b35cbe34d5031e27e7 (patch)
tree	032fafd34f178af3b66877d52897f2e14359adaf /doc/news.rst
parent	2d078053b1ac7c1e2316892d8634c386288ee159 (diff)