Don't reject TLS packets with zero plaintext bytes

OpenSSL sends an empty record before each new data record in TLS v1.0
to randomize the IV, as a countermeasure to the BEAST attack. Most
implementations use 1/(n-1) splitting for this instead.

Bug introduced with the const time changes in 1.11.23

0 files changed, 0 insertions, 0 deletions