CVSROOT: /cvs
Module name: src
Changes by: [email protected] 2026/06/14 08:53:07
Modified files:
lib/libssl : tls13_client.c
Log message:
Send illegal parameter alerts for various HelloRetryRequest violations.
Be more RFC compliant and send illegal parameter alerts when the client
receives a HelloRetryRequest that requests a group that we did not offer
or a group that we sent a key share for in the ClientHello. These were
annotated as missing, but not previously implemented.
Prompted by a report from the tlspuffin team.
ok tb@
