]> Cypherpunks repositories - gostls13.git/commit
projects / gostls13.git / commit
summary | shortlog | log | commit | commitdiff | tree
(parent: 5cd6ab5) | patch
crypto/tls: reject CT extension with no SCTs included
authorwoodsaj <awoods@raintank.io>
Thu, 17 Nov 2016 12:14:32 +0000 (20:14 +0800)
committerBrad Fitzpatrick <bradfitz@golang.org>
Thu, 17 Nov 2016 20:21:48 +0000 (20:21 +0000)
commitc09945980a80a3b92362bd2e99a883051d2dd4d7
treec40318715d5430273efc36aebd4c0bc87dcf1f07tree
parent5cd6ab5b6d8232d5443f474c378f1307ce502613commit | diff
crypto/tls: reject CT extension with no SCTs included

When the CT extension is enabled but no SCTs are present, the existing
code calls "continue" which causes resizing the data byte slice to be
skipped. In fact, such extensions should be rejected.

Fixes #17958

Change-Id: Iad12da10d1ea72d04ae2e1012c28bb2636f06bcd
Reviewed-on: https://go-review.googlesource.com/33265
Reviewed-by: Brad Fitzpatrick <bradfitz@golang.org>
Run-TryBot: Brad Fitzpatrick <bradfitz@golang.org>
TryBot-Result: Gobot Gobot <gobot@golang.org>
src/crypto/tls/handshake_messages.go diff | blob | history
src/crypto/tls/handshake_messages_test.go diff | blob | history
Go GOST TLS 1.3