From a6c153b94016ad1b761a9566cfd74a0e3da81449 Mon Sep 17 00:00:00 2001
From: Peter Dettman <peter.dettman@bouncycastle.org>
Date: Fri, 6 Dec 2013 19:03:43 +0700
Subject: Avoid sending any records until writeVersion is established

---
 core/src/main/java/org/bouncycastle/crypto/tls/RecordStream.java | 6 ++++++
 1 file changed, 6 insertions(+)

(limited to 'core/src/main/java/org/bouncycastle/crypto/tls')

diff --git a/core/src/main/java/org/bouncycastle/crypto/tls/RecordStream.java b/core/src/main/java/org/bouncycastle/crypto/tls/RecordStream.java
index cc6640be..5dec7c7d 100644
--- a/core/src/main/java/org/bouncycastle/crypto/tls/RecordStream.java
+++ b/core/src/main/java/org/bouncycastle/crypto/tls/RecordStream.java
@@ -219,6 +219,12 @@ class RecordStream
     protected void writeRecord(short type, byte[] plaintext, int plaintextOffset, int plaintextLength)
         throws IOException
     {
+        // Never send anything until a valid ClientHello has been received
+        if (writeVersion == null)
+        {
+            return;
+        }
+
         /*
          * RFC 5264 6. Implementations MUST NOT send record types not defined in this document
          * unless negotiated by some extension.
-- 
cgit v1.2.3