diff options
author | Peter Dettman <peter.dettman@bouncycastle.org> | 2013-06-22 08:55:11 +0400 |
---|---|---|
committer | Peter Dettman <peter.dettman@bouncycastle.org> | 2013-06-22 08:55:11 +0400 |
commit | b1eaafbe96dd53b791d2b10204bd772f408f1835 (patch) | |
tree | 0e7879b72e634dd58419102005cf74234fe944bb /core/src/main/java/org/bouncycastle/crypto/tls/DTLSServerProtocol.java | |
parent | 91dbc4003bc6504d407b9a225872e4ac0ba5bf98 (diff) |
Add check that server status_request extension_data is empty (RFC 3546)
Diffstat (limited to 'core/src/main/java/org/bouncycastle/crypto/tls/DTLSServerProtocol.java')
-rw-r--r-- | core/src/main/java/org/bouncycastle/crypto/tls/DTLSServerProtocol.java | 4 |
1 files changed, 2 insertions, 2 deletions
diff --git a/core/src/main/java/org/bouncycastle/crypto/tls/DTLSServerProtocol.java b/core/src/main/java/org/bouncycastle/crypto/tls/DTLSServerProtocol.java index b378c887..6481e98e 100644 --- a/core/src/main/java/org/bouncycastle/crypto/tls/DTLSServerProtocol.java +++ b/core/src/main/java/org/bouncycastle/crypto/tls/DTLSServerProtocol.java @@ -404,8 +404,8 @@ public class DTLSServerProtocol securityParameters.truncatedHMac = TlsExtensionsUtils.hasTruncatedHMacExtension(state.serverExtensions); - // TODO[RFC 3546] Should this code check that the 'extension_data' is empty? - state.allowCertificateStatus = state.serverExtensions.containsKey(TlsExtensionsUtils.EXT_status_request); + state.allowCertificateStatus = evaluateStatusRequestExtension(state.serverExtensions, + AlertDescription.internal_error); state.expectSessionTicket = state.serverExtensions.containsKey(TlsProtocol.EXT_SessionTicket); |