feedc0de/wolfssl
1
0
Fork 0
forked from wolfSSL/wolfssl
Code Pull Requests Activity

1. In the loop in TCA parse, when checking the list of IDs that the

Browse Source 
server has keys for, change the polarity of the comparison. If the
current ID is in the list, set the response flag and break out of
the loop.
This commit is contained in:
John Safranek
2019-02-28 16:15:47 -08:00
parent 9bd40353c2
commit 1eb46c697f
1 changed files with 7 additions and 4 deletions
Download Patch File Download Diff File Expand all files Collapse all files

11
src/tls.c
View File

@ -2559,11 +2559,13 @@ static int TLSX_TCA_Parse(WOLFSSL* ssl, const byte* input, word16 length,
return TCA_INVALID_ID_TYPE;
}
/* Find the type/ID in the TCA list. */
tca = TLSX_TCA_Find((TCA*)extension->data, type, id, idSz);
if (!tca)
continue;
TLSX_SetResponse(ssl, TLSX_TRUSTED_CA_KEYS);
if (tca != NULL) {
/* Found it. Set the response flag and break out of the loop. */
TLSX_SetResponse(ssl, TLSX_TRUSTED_CA_KEYS);
break;
}
}
#else
(void)input;
@ -2572,6 +2574,7 @@ static int TLSX_TCA_Parse(WOLFSSL* ssl, const byte* input, word16 length,
return 0;
}
/* Checks to see if the server sent a response for the TCA. */
static int TLSX_TCA_VerifyParse(WOLFSSL* ssl, byte isRequest)
{
(void)ssl;