TLS 1.3 – verify that server will accept Change Cipher Spec in any place #207
Labels
blocked
waiting for some other issue to be resolved
good first issue
relatively simple changes, good for first time contributors
help wanted
new test script
will require creation of a new connection script
Projects
Comments
tomato42
added
help wanted
good first issue
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
in middlebox compatibility mode (which should always be supported on receiving side), the peer can send CCS at any point in the connection post ClientHello and before Finished.
Verify that it's accepted by server with HRR, 0-RTT (w/early_data) and with client certificate authentication.
also check if it can be received in between undecryptable 0-RTT (early_data) records
and between fragments of messages; verify that it is rejected when it's between fragments of first ClientHello but accepted when it is between fragments of second ClientHello
Partially blocked by #198 and #205
Partially tested by
test-tls13-0rtt-garbage.pyfrom #423The text was updated successfully, but these errors were encountered: