feedc0de/wolfssl
1
0
Fork 0
forked from wolfSSL/wolfssl
Code Pull Requests Activity

Fix window check

Browse Source 
If `curLT` then diff needs to be decremented. For example: `diff` = 1 represents last packet so it would be the `window[idx] & (1 << 0)` bit of the window variable.
This commit is contained in:
Juliusz Sosinowicz
2020-09-09 23:23:32 +02:00
parent 29a840aee0
commit e34ccaf481
1 changed files with 9 additions and 2 deletions
Download Patch File Download Diff File Expand all files Collapse all files

11
src/internal.c
View File

@@ -12906,8 +12906,15 @@ static WC_INLINE int DtlsCheckWindow(WOLFSSL* ssl)
} }
#endif #endif
else if (curLT) { else if (curLT) {
word32 idx = diff / DTLS_WORD_BITS; word32 idx;
word32 newDiff = diff % DTLS_WORD_BITS; word32 newDiff;
if (diff == 0) {
WOLFSSL_MSG("DTLS sanity check failed");
return 0;
}
diff--;
idx = diff / DTLS_WORD_BITS;
newDiff = diff % DTLS_WORD_BITS;
/* verify idx is valid for window array */ /* verify idx is valid for window array */
if (idx >= WOLFSSL_DTLS_WINDOW_WORDS) { if (idx >= WOLFSSL_DTLS_WINDOW_WORDS) {