DescriptionWhen renegotiating, continue to use the client_version used in the
initial ClientHello to work around a Windows SChannel bug.
Cap the record layer version number to TLS 1.0 only for the initial
ClientHello. The record layer version number of the ClientHello in
a renegotiation should use the currently negotiated version number.
R=agl@chromium.org,rsleevi@chromium.org
BUG=141629
TEST=Visit https://solutionscenter.naradana.net/, an IIS server that
requests (but doesn't require) client certificates over renegotiation.
The page should be laid out correctly.
Committed: http://src.chromium.org/viewvc/chrome?view=rev&revision=152116
Patch Set 1 #Patch Set 2 : Comments added. Ready for review #
Total comments: 18
Patch Set 3 : Remove unrelated bug fix, add comments, don't move ss->ssl3.hs.ws assignment #
Total comments: 5
Patch Set 4 : Assert that ss->clientHelloVersion is still in the version range for renegotiation #Patch Set 5 : Replace assertions with real error checking #Patch Set 6 : Add the patch file #
Messages
Total messages: 11 (0 generated)
|