Merge pull request #4248 from hanno-arm/tls13_populate_transform

Fix and test compliance of TLS 1.3 record protection
2021-08-11 16:41:51 +01:00 · 2021-08-11 16:41:51 +01:00 · 2aec149e13
commit 2aec149e13
parent 448c80727d d7e4b2ce42
8 changed files with 399 additions and 50 deletions
--- a/library/ssl_misc.h
+++ b/library/ssl_misc.h
@ -740,7 +740,8 @@ struct mbedtls_ssl_transform

 #if defined(MBEDTLS_SSL_CONTEXT_SERIALIZATION)
    /* We need the Hello random bytes in order to re-derive keys from the
-     * Master Secret and other session info, see ssl_populate_transform() */
+     * Master Secret and other session info,
+     * see ssl_tls12_populate_transform() */
    unsigned char randbytes[64]; /*!< ServerHello.random+ClientHello.random */
 #endif /* MBEDTLS_SSL_CONTEXT_SERIALIZATION */
 };