New logic for DTLS replay detection. Abstracts the sequence handling

out a bit. Handling of initial server record is pretty nasty.
author: lloyd <[email protected]> 2012-09-10 19:42:44 +0000
committer: lloyd <[email protected]> 2012-09-10 19:42:44 +0000
commit: 8c0160098e9bffa1a124a8951ba1a9c074f5509c (patch)
tree: 438bcd9b17bd0f3f122cb2450cc6851ded4faeac /src/tls/tls_record.h
parent: ad949688f2903d6b59e3178fc2d6a0022bdfa79f (diff)
1 files changed, 4 insertions, 2 deletions
diff --git a/src/tls/tls_record.h b/src/tls/tls_record.h
index 2b415edb8..841244733 100644
--- a/src/tls/tls_record.h
+++ b/src/tls/tls_record.h
@@ -23,6 +23,8 @@ namespace TLS {
 class Ciphersuite;
 class Session_Keys;
 
+class Connection_Sequence_Numbers;
+
 /**
 * TLS Cipher State
 */
@@ -78,8 +80,8 @@ class Connection_Cipher_State
 */
 void write_record(std::vector<byte>& write_buffer,
                   byte msg_type, const byte msg[], size_t msg_length,
-                  u64bit msg_sequence_number,
                   Protocol_Version version,
+                  Connection_Sequence_Numbers& sequence_numbers,
                   Connection_Cipher_State* cipherstate,
                   RandomNumberGenerator& rng);
 
@@ -94,8 +96,8 @@ size_t read_record(std::vector<byte>& read_buffer,
                    size_t& input_consumed,
                    byte& msg_type,
                    std::vector<byte>& msg,
-                   u64bit msg_sequence,
                    Protocol_Version& record_version,
+                   Connection_Sequence_Numbers* sequence_numbers,
                    Connection_Cipher_State* cipherstate);
 
 }
author	lloyd <[email protected]>	2012-09-10 19:42:44 +0000
committer	lloyd <[email protected]>	2012-09-10 19:42:44 +0000
commit	8c0160098e9bffa1a124a8951ba1a9c074f5509c (patch)
tree	438bcd9b17bd0f3f122cb2450cc6851ded4faeac /src/tls/tls_record.h
parent	ad949688f2903d6b59e3178fc2d6a0022bdfa79f (diff)