5ca21db813
The sequence of calls starts-update-starts-update-finish is not a guaranteed valid way to abort an operation and start a new one. Our software implementation just happens to support it, but alt implementations may very well not support it. Signed-off-by: Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com>
5 lines
306 B
Text
5 lines
306 B
Text
Bugfix
|
|
* Fix a regression introduced in 2.24.0 which broke (D)TLS CBC ciphersuites
|
|
(when the encrypt-then-MAC extension is not in use) with some ALT
|
|
implementations of the underlying hash (SHA-1, SHA-256, SHA-384), causing
|
|
the affected side to wrongly reject valid messages. Fixes #4118.
|