Add an interface for QUIC integration. 0-RTT support and APIs to consume NewSessionTicket will be added in a follow-up. Change-Id: Ib2b2c6b618b3e33a74355fb53fdbd2ffafcc5c56 Reviewed-on: https://boringssl-review.googlesource.com/c/31744 Commit-Queue: Steven Valdez <svaldez@google.com> CQ-Verified: CQ bot account: commit-bot@chromium.org <commit-bot@chromium.org> Reviewed-by: Steven Valdez <svaldez@google.com> Reviewed-by: David Benjamin <davidben@google.com>

commit: c8e0f90f83b9ec38ea833deb86b5a41360b62b6a [log] [tgz]
author: Steven Valdez <svaldez@chromium.org> Sat Jul 14 11:23:01 2018 -0400
committer: CQ bot account: commit-bot@chromium.org <commit-bot@chromium.org> Wed Oct 31 20:38:10 2018 +0000
tree: 80d337d43e11ace709aee31a4247be3457fdefef
parent: dc332205326340ec1bf7d553452c7699904054b4 [diff] [blame]
diff --git a/ssl/tls13_both.cc b/ssl/tls13_both.cc
index a02d35d..299fc14 100644
--- a/ssl/tls13_both.cc
+++ b/ssl/tls13_both.cc

@@ -645,7 +645,8 @@
 bool tls13_post_handshake(SSL *ssl, const SSLMessage &msg) {
   if (msg.type == SSL3_MT_KEY_UPDATE) {
     ssl->s3->key_update_count++;
-    if (ssl->s3->key_update_count > kMaxKeyUpdates) {
+    if (ssl->ctx->quic_method != nullptr ||
+        ssl->s3->key_update_count > kMaxKeyUpdates) {
       OPENSSL_PUT_ERROR(SSL, SSL_R_TOO_MANY_KEY_UPDATES);
       ssl_send_alert(ssl, SSL3_AL_FATAL, SSL_AD_UNEXPECTED_MESSAGE);
       return false;
commit	c8e0f90f83b9ec38ea833deb86b5a41360b62b6a	[log] [tgz]
author	Steven Valdez <svaldez@chromium.org>	Sat Jul 14 11:23:01 2018 -0400
committer	CQ bot account: commit-bot@chromium.org <commit-bot@chromium.org>	Wed Oct 31 20:38:10 2018 +0000
tree	80d337d43e11ace709aee31a4247be3457fdefef
parent	dc332205326340ec1bf7d553452c7699904054b4 [diff] [blame]