feedc0de/wolfssl
1
0
Fork 0
forked from wolfSSL/wolfssl
Code Pull Requests Activity

DTLS Sequence Number update

Browse Source 
1. Set the prevSeq to nextSeq on CCS.
2. Fully clear nextSeq on CCS.
This commit is contained in:
John Safranek
2016-12-20 09:30:46 -08:00
parent 1a5c5d0011
commit ac27d6d7ca
1 changed files with 5 additions and 2 deletions
Download Patch File Download Diff File Expand all files Collapse all files

7
src/internal.c
View File

@ -9723,10 +9723,13 @@ int ProcessReply(WOLFSSL* ssl)
#ifdef WOLFSSL_DTLS #ifdef WOLFSSL_DTLS
if (ssl->options.dtls) { if (ssl->options.dtls) {
DtlsMsgPoolReset(ssl); DtlsMsgPoolReset(ssl);
ssl->keys.nextEpoch++; ssl->keys.prevSeq_lo = ssl->keys.nextSeq_lo;
ssl->keys.nextSeq_lo = 0; ssl->keys.prevSeq_hi = ssl->keys.nextSeq_hi;
XMEMCPY(ssl->keys.prevWindow, ssl->keys.window, XMEMCPY(ssl->keys.prevWindow, ssl->keys.window,
DTLS_SEQ_SZ); DTLS_SEQ_SZ);
ssl->keys.nextEpoch++;
ssl->keys.nextSeq_lo = 0;
ssl->keys.nextSeq_hi = 0;
XMEMSET(ssl->keys.window, 0, DTLS_SEQ_SZ); XMEMSET(ssl->keys.window, 0, DTLS_SEQ_SZ);
} }
#endif #endif