ssl_client.c: Adapt compression methods comment to TLS 1.2 case
Signed-off-by: Ronald Cron <ronald.cron@arm.com>
This commit is contained in:
Ronald Cron
parent
d491c2d779
commit
42c1cbf1de
1 changed files with 5 additions and 1 deletions
|
|
@ -385,11 +385,15 @@ static int ssl_write_client_hello_body( mbedtls_ssl_context *ssl,
|
|||
return( ret );
|
||||
p += output_len;
|
||||
|
||||
/* Write legacy_compression_methods
|
||||
/* Write legacy_compression_methods (TLS 1.3) or
|
||||
* compression_methods (TLS 1.2)
|
||||
*
|
||||
* For every TLS 1.3 ClientHello, this vector MUST contain exactly
|
||||
* one byte set to zero, which corresponds to the 'null' compression
|
||||
* method in prior versions of TLS.
|
||||
*
|
||||
* For TLS 1.2 ClientHello, for security reasons we do not support
|
||||
* compression anymore, thus also just the 'null' compression method.
|
||||
*/
|
||||
MBEDTLS_SSL_CHK_BUF_PTR( p, end, 2 );
|
||||
*p++ = 1;
|
||||
|
|
|
|||
Loading…
Reference in a new issue