don't save anything about a packet before authenticating it

2018-05-16 18:59:43 +09:00
parent 407a563c73
commit bd483c75e5
1 changed files with 4 additions and 3 deletions
--- a/session.go
+++ b/session.go
@@ -603,9 +603,6 @@ func (s *session) handlePacketImpl(p *receivedPacket) error {
 		p.rcvTime = time.Now()
 	}

-	s.receivedFirstPacket = true
-	s.lastNetworkActivityTime = p.rcvTime
-	s.keepAlivePingSent = false
 	hdr := p.header
 	data := p.data

@@ -630,6 +627,10 @@ func (s *session) handlePacketImpl(p *receivedPacket) error {
 		return err
 	}

+	s.receivedFirstPacket = true
+	s.lastNetworkActivityTime = p.rcvTime
+	s.keepAlivePingSent = false
+
 	// In TLS 1.3, the client considers the handshake complete as soon as
 	// it received the server's Finished message and sent its Finished.
 	// We have to wait for the first forward-secure packet from the server before