d2fc9b0961
This commit also addresses the side effect that additional messages have an influence on the derivation of the application traffic secrets. Therefore, key derivation is relocated after the server finished message has been sent, so the additional messages from the client (Certificate, CertificateVerify) don't affect the key derivation. Only the outbound key is switched there, the inbound key remains in use until the client's finished message has been processed. |
||
---|---|---|
.. | ||
test_hkdf.c | ||
test_socket.c | ||
test_suites.c |