Improve interop by not writing ext_len in ClientHello / ServerHello when 0

The RFC also indicates that without any extensions, we should write a struct {} (empty) not an array of length zero.
2026-03-05 20:16:41 +00:00 · 2014-04-30 10:15:38 +02:00
parent c73079a78c
commit a70366317d
3 changed files with 14 additions and 6 deletions
--- a/2
+++ b/2
@@ -18,6 +18,8 @@ Bugfix
   * cert_write app should use subject of issuer certificate as issuer of cert
   * Fix false reject in padding check in ssl_decrypt_buf() for CBC
     ciphersuites, for full SSL frames of data.
+   * Improve interoperability by not writing extension length in ClientHello /
+     ServerHello when no extensions are present (found by Matthew Page)

 = PolarSSL 1.3.6 released on 2014-04-11