ddb9f15e18b25d485d95afbff1237fec44f1f5ce - boringssl

commit	ddb9f15e18b25d485d95afbff1237fec44f1f5ce	[log] [tgz]
author	David Benjamin <davidben@chromium.org>	Tue Feb 03 15:44:39 2015 -0500
committer	Adam Langley <agl@google.com>	Tue Feb 03 21:55:53 2015 +0000
tree	5a4e6d4afaf745fb4477c9536a640adc21a7952a
parent	afbc63fc2f2cec3100de46588bd2a10964e536c9 [diff]

Reject all invalid records.

The check on the DTLS side was broken anyway. On the TLS side, the spec does
say to ignore them, but there should be no need for this in future-proofing and
NSS doesn't appear to be lenient here. See also
https://boringssl-review.googlesource.com/#/c/3233/

Change-Id: I0846222936c5e08acdcfd9d6f854a99df767e468
Reviewed-on: https://boringssl-review.googlesource.com/3290
Reviewed-by: Adam Langley <agl@google.com>

ssl/d1_pkt.c[diff]
ssl/s3_pkt.c[diff]
ssl/test/runner/common.go[diff]
ssl/test/runner/conn.go[diff]
ssl/test/runner/runner.go[diff]

5 files changed

tree: 5a4e6d4afaf745fb4477c9536a640adc21a7952a

crypto/
doc/
include/
ssl/
tool/
util/
.clang-format
.gitignore
BUILDING
CMakeLists.txt
codereview.settings
STYLE