diff options
author | Peter Dettman <peter.dettman@bouncycastle.org> | 2013-06-22 08:55:11 +0400 |
---|---|---|
committer | Peter Dettman <peter.dettman@bouncycastle.org> | 2013-06-22 08:55:11 +0400 |
commit | b1eaafbe96dd53b791d2b10204bd772f408f1835 (patch) | |
tree | 0e7879b72e634dd58419102005cf74234fe944bb /core/src/main/java/org/bouncycastle/crypto/tls/TlsClientProtocol.java | |
parent | 91dbc4003bc6504d407b9a225872e4ac0ba5bf98 (diff) |
Add check that server status_request extension_data is empty (RFC 3546)
Diffstat (limited to 'core/src/main/java/org/bouncycastle/crypto/tls/TlsClientProtocol.java')
-rw-r--r-- | core/src/main/java/org/bouncycastle/crypto/tls/TlsClientProtocol.java | 3 |
1 files changed, 1 insertions, 2 deletions
diff --git a/core/src/main/java/org/bouncycastle/crypto/tls/TlsClientProtocol.java b/core/src/main/java/org/bouncycastle/crypto/tls/TlsClientProtocol.java index c1efe7d2..081112e4 100644 --- a/core/src/main/java/org/bouncycastle/crypto/tls/TlsClientProtocol.java +++ b/core/src/main/java/org/bouncycastle/crypto/tls/TlsClientProtocol.java @@ -653,8 +653,7 @@ public class TlsClientProtocol this.securityParameters.truncatedHMac = TlsExtensionsUtils.hasTruncatedHMacExtension(serverExtensions); - // TODO[RFC 3546] Should this code check that the 'extension_data' is empty? - this.allowCertificateStatus = serverExtensions.containsKey(TlsExtensionsUtils.EXT_status_request); + processServerStatusExtension(serverExtensions, AlertDescription.illegal_parameter); this.expectSessionTicket = serverExtensions.containsKey(EXT_SessionTicket); } |