Add support for TLS v1.1's per-record random IV. Tested against GnuTLS server.

author: lloyd <[email protected]> 2010-03-30 02:50:15 +0000
committer: lloyd <[email protected]> 2010-03-30 02:50:15 +0000
commit: 2c0cd825b6368f61afdba0eab8c8697d25451787 (patch)
tree: 2217e60d38aa34d9bf8fde1f3e17bc48d5e8303c /src/ssl/hello.cpp
parent: 6d141cd765d840d8bbfdaaa8154494d3c9ecce50 (diff)
1 files changed, 5 insertions, 1 deletions
diff --git a/src/ssl/hello.cpp b/src/ssl/hello.cpp
index 53f680fba..e4a04dfa7 100644
--- a/src/ssl/hello.cpp
+++ b/src/ssl/hello.cpp
@@ -219,9 +219,13 @@ void Server_Hello::deserialize(const MemoryRegion<byte>& buf)
       throw Decoding_Error("Server_Hello: Packet corrupted");
 
    s_version = static_cast<Version_Code>(make_u16bit(buf[0], buf[1]));
-   if(s_version != SSL_V3 && s_version != TLS_V10)
+   if(s_version != SSL_V3 &&
+      s_version != TLS_V10 &&
+      s_version != TLS_V11)
+      {
       throw TLS_Exception(PROTOCOL_VERSION,
                           "Server_Hello: Unsupported server version");
+      }
 
    s_random.set(buf + 2, 32);
author	lloyd <[email protected]>	2010-03-30 02:50:15 +0000
committer	lloyd <[email protected]>	2010-03-30 02:50:15 +0000
commit	2c0cd825b6368f61afdba0eab8c8697d25451787 (patch)
tree	2217e60d38aa34d9bf8fde1f3e17bc48d5e8303c /src/ssl/hello.cpp
parent	6d141cd765d840d8bbfdaaa8154494d3c9ecce50 (diff)