Merge pull request #5133 from rizlik/cookie_keyshare_fix

tls13: fix cookie has keyShare information check
2025-08-01 03:34:39 +02:00 · 2022-05-13 08:01:59 +10:00
parent d1308fcdfc 829e9f5277
commit 6aaee73585
1 changed files with 2 additions and 1 deletions
--- a/src/tls13.c
+++ b/src/tls13.c
@@ -4437,7 +4437,8 @@ static int RestartHandshakeHashWithCookie(WOLFSSL* ssl, Cookie* cookie)
    length = HRR_BODY_SZ - ID_LEN + ssl->session->sessionIDSz +
             HRR_COOKIE_HDR_SZ + cookie->len;
    length += HRR_VERSIONS_SZ;
-    if (cookieDataSz > hashSz + OPAQUE16_LEN) {
+    /* HashSz (1 byte) + Hash (HashSz bytes) + CipherSuite (2 bytes) */
+    if (cookieDataSz > OPAQUE8_LEN + hashSz + OPAQUE16_LEN) {
        keyShareExt = 1;
        length += HRR_KEY_SHARE_SZ;
    }