feedc0de/wolfssl
1
0
Fork 0
forked from wolfSSL/wolfssl
Code Pull Requests Activity

Fixes SSLv3 use of ECDH. The public key length byte needs to be skipped for import with SSLv3 and TLS (not TLS v1.3). ZD 11085

Browse Source
This commit is contained in:
David Garske
2020-10-09 12:01:41 -07:00
parent 3e69318ac7
commit f3fbb921c0
1 changed files with 1 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
src/sniffer.c
View File

@ -2268,7 +2268,7 @@ static int SetupKeys(const byte* input, int* sslBytes, SnifferSession* session,
length = wc_ecc_size(&key) * 2 + 1;
/* The length should be 2 times the key size (x and y), plus 1
* for the type byte. */
if (IsTLS(session->sslServer) && !IsAtLeastTLSv1_3(session->sslServer->version)) {
if (!IsAtLeastTLSv1_3(session->sslServer->version)) {
input += 1; /* Don't include the TLS length for the key. */
}