diff options
| author | Peter Dettman <peter.dettman@bouncycastle.org> | 2013-05-20 12:49:37 +0400 |
|---|---|---|
| committer | Peter Dettman <peter.dettman@bouncycastle.org> | 2013-05-20 12:49:37 +0400 |
| commit | 3e7aacd204310cb449338c41a4a54848976ccb95 (patch) | |
| tree | 1ec4266aa067870b2da460f6562c01934cef8740 | |
| parent | 0801e4e5bd0c5472c716a568c0a51d07f0452805 (diff) | |
Init pending epoch immediately after client key exchange received
| -rw-r--r-- | src/main/java/org/bouncycastle/crypto/tls/DTLSServerProtocol.java | 4 |
1 files changed, 2 insertions, 2 deletions
diff --git a/src/main/java/org/bouncycastle/crypto/tls/DTLSServerProtocol.java b/src/main/java/org/bouncycastle/crypto/tls/DTLSServerProtocol.java index f429e201..5a334ad1 100644 --- a/src/main/java/org/bouncycastle/crypto/tls/DTLSServerProtocol.java +++ b/src/main/java/org/bouncycastle/crypto/tls/DTLSServerProtocol.java @@ -170,6 +170,8 @@ public class DTLSServerProtocol extends DTLSProtocol { throw new TlsFatalAlert(AlertDescription.unexpected_message);
}
+ recordLayer.initPendingEpoch(state.server.getCipher());
+
/*
* RFC 5246 7.4.8 This message is only sent following a client certificate that has signing
* capability (i.e., all certificates except those containing fixed Diffie-Hellman
@@ -186,8 +188,6 @@ public class DTLSServerProtocol extends DTLSProtocol { }
}
- recordLayer.initPendingEpoch(state.server.getCipher());
-
// NOTE: Calculated exclusive of the actual Finished message from the client
byte[] clientFinishedHash = handshake.getCurrentHash();
clientMessage = handshake.receiveMessage();
|