]> Cypherpunks repositories - gostls13.git/commit
projects / gostls13.git / commit
summary | shortlog | log | commit | commitdiff | tree
(parent: 8e0686a) | patch
crypto/tls: enable TLS_FALLBACK_SCSV in server with default max version
authorBen Burkert <ben@benburkert.com>
Thu, 18 Dec 2014 18:17:54 +0000 (10:17 -0800)
committerAdam Langley <agl@golang.org>
Thu, 18 Dec 2014 19:36:01 +0000 (19:36 +0000)
commit1965b035844b3e8e8b9dd3c21a113345c7eee8b1
tree9b5d938bed4fdc3add8de19fb64947a516909a40tree
parent8e0686a07104f78d182ad6e63f1575b19ff6e1b9commit | diff
crypto/tls: enable TLS_FALLBACK_SCSV in server with default max version

Fix TLS_FALLBACK_SCSV check when comparing the client version to the
default max version. This enables the TLS_FALLBACK_SCSV check by default
in servers that do not explicitly set a max version in the tls config.

Change-Id: I5a51f9da6d71b79bc6c2ba45032be51d0f704b5e
Reviewed-on: https://go-review.googlesource.com/1776
Reviewed-by: Adam Langley <agl@golang.org>
src/crypto/tls/handshake_server.go diff | blob | history
src/crypto/tls/handshake_server_test.go diff | blob | history
Go GOST TLS 1.3