diff options
| author | lloyd <[email protected]> | 2011-12-28 22:39:18 +0000 |
|---|---|---|
| committer | lloyd <[email protected]> | 2011-12-28 22:39:18 +0000 |
| commit | eb6b59f2aef6a4999be244c7d90ace3f6bbcac5d (patch) | |
| tree | 7b15e8034769e1a9d57335e1fb0259167299fcc6 /src/tls/tls_server.cpp | |
| parent | b48a5b800a00e955cada6c418848c3bc460e44e7 (diff) | |
Don't buffer in the record writer at all - we immediately process and
send out inputs as they are available. Thus, flushing is never
required, and we avoid some unnecessary copying.
If we are using a CBC mode cipher in SSLv3/TLSv1.0, send a 1-byte
fragment to start to prevent the adaptive plaintext attack.
Diffstat (limited to 'src/tls/tls_server.cpp')
| -rw-r--r-- | src/tls/tls_server.cpp | 2 |
1 files changed, 0 insertions, 2 deletions
diff --git a/src/tls/tls_server.cpp b/src/tls/tls_server.cpp index a22e6854e..16bf554d3 100644 --- a/src/tls/tls_server.cpp +++ b/src/tls/tls_server.cpp @@ -184,7 +184,6 @@ void TLS_Server::process_handshake_msg(Handshake_Type type, true); writer.send(CHANGE_CIPHER_SPEC, 1); - writer.flush(); writer.set_keys(state->suite, state->keys, SERVER); @@ -337,7 +336,6 @@ void TLS_Server::process_handshake_msg(Handshake_Type type, state->hash.update(type, contents); writer.send(CHANGE_CIPHER_SPEC, 1); - writer.flush(); writer.set_keys(state->suite, state->keys, SERVER); |