wolfSSL/wolfssl
1
0
Fork 1
mirror of https://github.com/wolfSSL/wolfssl.git synced 2025-07-30 02:37:28 +02:00
Code Issues Packages Projects Releases Wiki Activity

Refactor the crazy conditional in VerifyForDtlsMsgPoolSend

Browse Source
This commit is contained in:
Juliusz Sosinowicz
2023-08-24 19:24:40 +02:00
parent c5c968aae3
commit 6e3c3577f5
1 changed files with 15 additions and 7 deletions
Download Patch File Download Diff File Expand all files Collapse all files

22
src/internal.c
View File

@ -9199,13 +9199,21 @@ int VerifyForDtlsMsgPoolSend(WOLFSSL* ssl, byte type, word32 fragOffset)
* to be used for triggering retransmission of whole DtlsMsgPool.
* change cipher suite type is not verified here
*/
return ((fragOffset == 0) &&
(((ssl->options.side == WOLFSSL_SERVER_END) &&
((type == client_hello) ||
((ssl->options.verifyPeer) && (type == certificate)) ||
((!ssl->options.verifyPeer) && (type == client_key_exchange)))) ||
((ssl->options.side == WOLFSSL_CLIENT_END) &&
(type == hello_request || type == server_hello))));
if (fragOffset == 0) {
if (ssl->options.side == WOLFSSL_SERVER_END) {
if (type == client_hello)
return 1;
else if (ssl->options.verifyPeer && type == certificate)
return 1;
else if (!ssl->options.verifyPeer && type == client_key_exchange)
return 1;
}
else {
if (type == hello_request || type == server_hello)
return 1;
}
}
return 0;
}