]> git.ipfire.org Git - thirdparty/gnutls.git/commitdiff
doc update
authorNikos Mavrogiannopoulos <nmav@gnutls.org>
Sun, 29 Dec 2013 08:22:02 +0000 (09:22 +0100)
committerNikos Mavrogiannopoulos <nmav@gnutls.org>
Sun, 29 Dec 2013 08:22:02 +0000 (09:22 +0100)
lib/ext/dumbfw.c

index b67577cca6e03cec60c697b90d5d1e783957073b..2d8c565d7ab8328e0942facc1ddb3006ba22df75 100644 (file)
 #include "gnutls_num.h"
 #include <ext/dumbfw.h>
 
+/* This extension adds additional padding data in the TLS client hello.
+ * There is an issue with some firewalls [0] rejecting TLS client hello
+ * data that are between 256 and 511 bytes, and this extension will
+ * make sure that client hello isn't in this range.
+ *
+ * [0]. http://www.ietf.org/mail-archive/web/tls/current/msg10423.html
+ */
+
 static int _gnutls_dumbfw_send_params(gnutls_session_t session,
                                    gnutls_buffer_st * extdata);