feedc0de/wolfssl
1
0
Fork 0
forked from wolfSSL/wolfssl
Code Pull Requests Activity

Merge pull request #8302 from cconlon/sessTickLenCheck

Browse Source 
Loosen MAX_PSK_ID_LEN check in TLSX_PopulateExtensions() to only server side
This commit is contained in:
Sean Parkinson
2024-12-20 08:44:10 +10:00
committed by GitHub
parent 8fa238e554 1101841b95
commit 00f83facb2
1 changed files with 1 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
src/tls.c
View File

@ -13781,7 +13781,7 @@ int TLSX_PopulateExtensions(WOLFSSL* ssl, byte isServer)
word64 now, milli; word64 now, milli;
#endif #endif
if (sess->ticketLen > MAX_PSK_ID_LEN) { if (isServer && (sess->ticketLen > MAX_PSK_ID_LEN)) {
WOLFSSL_MSG("Session ticket length for PSK ext is too large"); WOLFSSL_MSG("Session ticket length for PSK ext is too large");
return BUFFER_ERROR; return BUFFER_ERROR;
} }