feedc0de/wolfssl
1
0
Fork 0
forked from wolfSSL/wolfssl
Code Pull Requests Activity

allow import of DTLS sessions with null cipher as the null cipher is allowed with dtls when enabled

Browse Source
This commit is contained in:
John Safranek
2018-03-02 09:57:07 -08:00
parent b25ebf64b9
commit da76ee0877
1 changed files with 3 additions and 2 deletions
Download Patch File Download Diff File Expand all files Collapse all files

5
src/internal.c
View File

@ -1314,8 +1314,9 @@ int wolfSSL_dtls_import_internal(WOLFSSL* ssl, byte* buf, word32 sz)
return MATCH_SUITE_ERROR; return MATCH_SUITE_ERROR;
} }
/* do not allow stream ciphers with DTLS */ /* do not allow stream ciphers with DTLS, except for NULL cipher */
if (ssl->specs.cipher_type == stream) { if (ssl->specs.cipher_type == stream &&
ssl->specs.bulk_cipher_algorithm != wolfssl_cipher_null) {
WOLFSSL_MSG("Can not import stream ciphers for DTLS"); WOLFSSL_MSG("Can not import stream ciphers for DTLS");
return SANITY_CIPHER_E; return SANITY_CIPHER_E;
} }