diff options
author | Jack Lloyd <[email protected]> | 2016-10-20 22:41:22 -0400 |
---|---|---|
committer | Jack Lloyd <[email protected]> | 2016-10-20 22:41:22 -0400 |
commit | 36e5b56eb4298e81e8413ac1ef0eada096df8abc (patch) | |
tree | fc1f885189293eb5ea3d1ea7edab7641b7cce89d /src/lib/cert/x509 | |
parent | 4b554a36b81b1a67987b6e32456c54c2ff4b6b49 (diff) |
Tighten up TLS server handshake logic.
Previously client was allowed to omit the Certificate message, a
leftover from supporting SSLv3. In all versions of TLS, an empty
message must be sent if the client does not want to use a cert.
No known security impact, but nothing we need to allow anymore.
Clean up the handshake switch a bit by using return statements.
Diffstat (limited to 'src/lib/cert/x509')
0 files changed, 0 insertions, 0 deletions