Skip to forum content

wolfSSL - Embedded SSL Library

Product Support Forums

You are not logged in. Please login or register.

Active topics Unanswered topics

Welcome to the wolfSSL Forums!

Please post questions or comments you have about wolfSSL products here. It is helpful to be as descriptive as possible when asking your questions.

References
Stable Releases - download stable product releases.
Development Branch - latest development branch on GitHub.
wolfSSL Manual - wolfSSL (formerly CyaSSL) product manual and API reference.

Search options

wolfSSL - Embedded SSL Library → Posts by desowin

Pages 1

Topics by desowin User defined search

Posts found: 1

1 Topic by desowin 2014-11-03 00:46:11

Topic: Maximum Fragment Length Negotiation implementation bug (1 replies, posted in wolfSSL)

wolfSSL 3.2.0 does not properly implement Maximum Fragment Length Negotiation.

RFC 4366 states that:

Once a maximum fragment length other than 2^14 has been successfully
negotiated, the client and server MUST immediately begin fragmenting
messages (including handshake messages), to ensure that no fragment
larger than the negotiated length is sent. Note that TLS already
requires clients and servers to support fragmentation of handshake
messages.

wolfSSL does not properly fragment handshake messages. The problem appears if certificates are bigger than negotiated Maximum Fragment Length.

Go to forum: wolfSSL Go to post 1

Posts found: 1

Pages 1

wolfSSL - Embedded SSL Library → Posts by desowin

Powered by PunBB, supported by Informer Technologies, Inc.

Generated in 0.016 seconds (95% PHP - 5% DB) with 5 queries