From 1c582e70c83fa1a7ec3b6ccfd241c602ae73915a Mon Sep 17 00:00:00 2001 From: Patrick Krämer Date: Wed, 10 May 2023 14:58:40 +0200 Subject: fix exception during DTLS server handshake when the client has no extensions --- crypto/Contributors.html | 2 +- crypto/src/tls/AbstractTlsServer.cs | 2 +- 2 files changed, 2 insertions(+), 2 deletions(-) diff --git a/crypto/Contributors.html b/crypto/Contributors.html index 2f9bb6a22..7764cac94 100644 --- a/crypto/Contributors.html +++ b/crypto/Contributors.html @@ -278,7 +278,7 @@ University of Wollongong, Institute of Cybersecurity and Cryptology, under the s

Daniel Bleichenbacher - Fixed rounding issue in FF1. Reported incompatible RFC 3394 wrapping of 64 bit keys.

  • -

    Patrick (https://github.com/patagonaa) - Initial PR for DTLS Connection ID support (RFC 9146). PR to make DTLS initial resend timeout configurable.

    +

    Patrick (https://github.com/patagonaa) - Initial PR for DTLS Connection ID support (RFC 9146). Fixed NPE in connection ID code. PR to make DTLS initial resend timeout configurable.

  • Anh Vo (https://github.com/anhvoms) - Ported OpenSSH utilities from bc-java.

    diff --git a/crypto/src/tls/AbstractTlsServer.cs b/crypto/src/tls/AbstractTlsServer.cs index 9f107d905..352002fbf 100644 --- a/crypto/src/tls/AbstractTlsServer.cs +++ b/crypto/src/tls/AbstractTlsServer.cs @@ -604,7 +604,7 @@ namespace Org.BouncyCastle.Tls * RFC 9146 3. When a DTLS session is resumed or renegotiated, the "connection_id" extension is * negotiated afresh. */ - if (m_clientExtensions.ContainsKey(ExtensionType.connection_id)) + if (m_clientExtensions != null && m_clientExtensions.ContainsKey(ExtensionType.connection_id)) { var serverConnectionID = GetNewConnectionID(); if (serverConnectionID != null) -- cgit 1.4.1