931ab3484f
It may take up to two iterations of s->handshake_func before it is safe to continue. Fortunately, even if anything was using False Start this way (Chromium doesn't), we don't inherit NSS's security bug. The "redundant" check in the type match case later on in this function saves us. Amusingly, the success case still worked before this fix. Even though we fall through to the post-handshake codepath and get a handshake record while "expecting" app data, the handshake state machine is still pumped thanks to a codepath meant for renego! Change-Id: Ie129d83ac1451ad4947c4f86380879db8a3fd924 Reviewed-on: https://boringssl-review.googlesource.com/3335 Reviewed-by: Adam Langley <agl@google.com> |
||
|---|---|---|
| .. | ||
| runner | ||
| async_bio.cc | ||
| async_bio.h | ||
| bssl_shim.cc | ||
| CMakeLists.txt | ||
| malloc.cc | ||
| packeted_bio.cc | ||
| packeted_bio.h | ||
| test_config.cc | ||
| test_config.h | ||