wolfSSL/wolfssl
1
0
Fork 1
mirror of https://github.com/wolfSSL/wolfssl.git synced 2025-08-01 03:34:39 +02:00
Code Issues Packages Projects Releases Wiki Activity

Merge pull request #5370 from rizlik/dtls13_partial_read_fixes

Browse Source 
dtlsv1.3 fixes
This commit is contained in:
David Garske
2022-07-20 08:03:29 -07:00
committed by GitHub
parent e4c1e71b38 2e0d53a07d
commit 719e814841
5 changed files with 82 additions and 27 deletions
Download Patch File Download Diff File Expand all files Collapse all files

37
src/dtls13.c
View File

@@ -234,12 +234,12 @@ static byte Dtls13TypeIsEncrypted(enum HandShakeType hs_type)
case hello_request: case hello_request:
case hello_verify_request: case hello_verify_request:
case client_hello: case client_hello:
case hello_retry_request:
case server_hello: case server_hello:
break; break;
case encrypted_extensions: case encrypted_extensions:
case session_ticket: case session_ticket:
case end_of_early_data: case end_of_early_data:
case hello_retry_request:
case certificate: case certificate:
case server_key_exchange: case server_key_exchange:
case certificate_request: case certificate_request:
@@ -269,14 +269,15 @@ static int Dtls13GetRnMask(WOLFSSL* ssl, const byte* ciphertext, byte* mask,
else else
c = &ssl->dtlsRecordNumberDecrypt; c = &ssl->dtlsRecordNumberDecrypt;
#ifdef HAVE_AESGCM #if defined(HAVE_AESGCM) || defined(HAVE_AESCCM)
if (ssl->specs.bulk_cipher_algorithm == wolfssl_aes_gcm) { if (ssl->specs.bulk_cipher_algorithm == wolfssl_aes_gcm ||
ssl->specs.bulk_cipher_algorithm == wolfssl_aes_ccm) {
if (c->aes == NULL) if (c->aes == NULL)
return BAD_STATE_E; return BAD_STATE_E;
return wc_AesEncryptDirect(c->aes, mask, ciphertext); return wc_AesEncryptDirect(c->aes, mask, ciphertext);
} }
#endif /* HAVE_AESGCM */ #endif /* HAVE_AESGCM || HAVE_AESCCM */
#ifdef HAVE_CHACHA #ifdef HAVE_CHACHA
if (ssl->specs.bulk_cipher_algorithm == wolfssl_chacha) { if (ssl->specs.bulk_cipher_algorithm == wolfssl_chacha) {
@@ -426,7 +427,7 @@ static int Dtls13SendFragFromBuffer(WOLFSSL* ssl, byte* output, word16 length)
static int Dtls13SendNow(WOLFSSL* ssl, enum HandShakeType handshakeType) static int Dtls13SendNow(WOLFSSL* ssl, enum HandShakeType handshakeType)
{ {
if (!ssl->options.groupMessages) if (!ssl->options.groupMessages || ssl->dtls13SendingFragments)
return 1; return 1;
if (handshakeType == client_hello || handshakeType == hello_retry_request || if (handshakeType == client_hello || handshakeType == hello_retry_request ||
@@ -1190,6 +1191,26 @@ int Dtls13ReconstructEpochNumber(WOLFSSL* ssl, byte epochBits,
return SEQUENCE_ERROR; return SEQUENCE_ERROR;
} }
int Dtls13GetUnifiedHeaderSize(const byte input, word16* size)
{
if (size == NULL)
return BAD_FUNC_ARG;
if (input & DTLS13_CID_BIT) {
WOLFSSL_MSG("DTLS1.3 header with connection ID. Not supported");
return WOLFSSL_NOT_IMPLEMENTED;
}
/* flags (1) + seq 8bit (1) */
*size = OPAQUE8_LEN + OPAQUE8_LEN;
if (input & DTLS13_SEQ_LEN_BIT)
*size += OPAQUE8_LEN;
if (input & DTLS13_LEN_BIT)
*size += OPAQUE16_LEN;
return 0;
}
/** /**
* Dtls13ParseUnifiedRecordLayer() - parse DTLS unified header * Dtls13ParseUnifiedRecordLayer() - parse DTLS unified header
* @ssl: [in] ssl object * @ssl: [in] ssl object
@@ -1236,10 +1257,6 @@ int Dtls13ParseUnifiedRecordLayer(WOLFSSL* ssl, const byte* input,
ato16(input + idx, &hdrInfo->recordLength); ato16(input + idx, &hdrInfo->recordLength);
idx += DTLS13_LEN_SIZE; idx += DTLS13_LEN_SIZE;
/* DTLS message must fit inside a datagram */
if (inputSize < idx + hdrInfo->recordLength)
return LENGTH_ERROR;
} }
else { else {
/* length not present. The size of the record is the all the remaining /* length not present. The size of the record is the all the remaining
@@ -1259,8 +1276,6 @@ int Dtls13ParseUnifiedRecordLayer(WOLFSSL* ssl, const byte* input,
if (ret != 0) if (ret != 0)
return ret; return ret;
hdrInfo->headerLength = idx;
if (seqLen == DTLS13_SEQ_16_LEN) { if (seqLen == DTLS13_SEQ_16_LEN) {
hdrInfo->seqHiPresent = 1; hdrInfo->seqHiPresent = 1;
hdrInfo->seqHi = seqNum[0]; hdrInfo->seqHi = seqNum[0];

35
src/internal.c
View File

@@ -9675,6 +9675,7 @@ int CheckAvailableSize(WOLFSSL *ssl, int size)
} }
#ifdef WOLFSSL_DTLS13 #ifdef WOLFSSL_DTLS13
static int GetInputData(WOLFSSL *ssl, word32 size);
static int GetDtls13RecordHeader(WOLFSSL* ssl, const byte* input, static int GetDtls13RecordHeader(WOLFSSL* ssl, const byte* input,
word32* inOutIdx, RecordLayerHeader* rh, word16* size) word32* inOutIdx, RecordLayerHeader* rh, word16* size)
{ {
@@ -9687,6 +9688,9 @@ static int GetDtls13RecordHeader(WOLFSSL* ssl, const byte* input,
readSize = ssl->buffers.inputBuffer.length - *inOutIdx; readSize = ssl->buffers.inputBuffer.length - *inOutIdx;
if (readSize < DTLS_UNIFIED_HEADER_MIN_SZ)
return BUFFER_ERROR;
epochBits = *input & EE_MASK; epochBits = *input & EE_MASK;
ret = Dtls13ReconstructEpochNumber(ssl, epochBits, &epochNumber); ret = Dtls13ReconstructEpochNumber(ssl, epochBits, &epochNumber);
if (ret != 0) if (ret != 0)
@@ -9718,6 +9722,20 @@ static int GetDtls13RecordHeader(WOLFSSL* ssl, const byte* input,
return SEQUENCE_ERROR; return SEQUENCE_ERROR;
} }
ret = Dtls13GetUnifiedHeaderSize(
*(input+*inOutIdx), &ssl->dtls13CurRlLength);
if (ret != 0)
return ret;
if (readSize < ssl->dtls13CurRlLength) {
/* when using DTLS over a medium that does not guarantee that a full
* message is received in a single read, we may end up without the full
* header */
ret = GetInputData(ssl, ssl->dtls13CurRlLength - readSize);
if (ret != 0)
return ret;
}
ret = Dtls13ParseUnifiedRecordLayer(ssl, input + *inOutIdx, readSize, ret = Dtls13ParseUnifiedRecordLayer(ssl, input + *inOutIdx, readSize,
&hdrInfo); &hdrInfo);
@@ -9745,8 +9763,8 @@ static int GetDtls13RecordHeader(WOLFSSL* ssl, const byte* input,
ssl->keys.curSeq); ssl->keys.curSeq);
#endif /* WOLFSSL_DEBUG_TLS */ #endif /* WOLFSSL_DEBUG_TLS */
*inOutIdx += hdrInfo.headerLength; XMEMCPY(ssl->dtls13CurRL, input + *inOutIdx, ssl->dtls13CurRlLength);
ssl->dtls13CurRlLength = hdrInfo.headerLength; *inOutIdx += ssl->dtls13CurRlLength;
return 0; return 0;
} }
@@ -9793,10 +9811,12 @@ static int GetDtlsRecordHeader(WOLFSSL* ssl, const byte* input,
} }
/* not a unified header, check that we have at least /* not a unified header, check that we have at least
DTLS_RECORD_HEADER_SZ */ * DTLS_RECORD_HEADER_SZ */
if (read_size < DTLS_RECORD_HEADER_SZ) if (read_size < DTLS_RECORD_HEADER_SZ) {
return LENGTH_ERROR; ret = GetInputData(ssl, DTLS_RECORD_HEADER_SZ - read_size);
if (ret != 0)
return LENGTH_ERROR;
}
#endif /* WOLFSSL_DTLS13 */ #endif /* WOLFSSL_DTLS13 */
/* type and version in same spot */ /* type and version in same spot */
@@ -18466,8 +18486,7 @@ int ProcessReplyEx(WOLFSSL* ssl, int allowSocketErr)
#ifdef WOLFSSL_DTLS13 #ifdef WOLFSSL_DTLS13
if (ssl->options.dtls) { if (ssl->options.dtls) {
/* aad now points to the record header */ /* aad now points to the record header */
aad = in->buffer + aad = ssl->dtls13CurRL;
in->idx - ssl->dtls13CurRlLength;
aad_size = ssl->dtls13CurRlLength; aad_size = ssl->dtls13CurRlLength;
} }
#endif /* WOLFSSL_DTLS13 */ #endif /* WOLFSSL_DTLS13 */

3
src/ssl.c
View File

@@ -522,7 +522,8 @@ WOLFSSL_CTX* wolfSSL_CTX_new_ex(WOLFSSL_METHOD* method, void* heap)
wolfSSL_CTX_set_verify(ctx, SSL_VERIFY_NONE, NULL); wolfSSL_CTX_set_verify(ctx, SSL_VERIFY_NONE, NULL);
wolfSSL_CTX_set_mode(ctx, SSL_MODE_AUTO_RETRY); wolfSSL_CTX_set_mode(ctx, SSL_MODE_AUTO_RETRY);
if (wolfSSL_CTX_set_min_proto_version(ctx, if (wolfSSL_CTX_set_min_proto_version(ctx,
SSL3_VERSION) != WOLFSSL_SUCCESS || (method->version.major == DTLS_MAJOR) ?
DTLS1_VERSION : SSL3_VERSION) != WOLFSSL_SUCCESS ||
#ifdef HAVE_ANON #ifdef HAVE_ANON
wolfSSL_CTX_allow_anon_cipher(ctx) != WOLFSSL_SUCCESS || wolfSSL_CTX_allow_anon_cipher(ctx) != WOLFSSL_SUCCESS ||
#endif #endif

29
src/tls13.c
View File

@@ -3339,6 +3339,7 @@ int SendTls13ClientHello(WOLFSSL* ssl)
WOLFSSL_START(WC_FUNC_CLIENT_HELLO_SEND); WOLFSSL_START(WC_FUNC_CLIENT_HELLO_SEND);
WOLFSSL_ENTER("SendTls13ClientHello"); WOLFSSL_ENTER("SendTls13ClientHello");
ssl->options.buildingMsg = 1;
major = SSLv3_MAJOR; major = SSLv3_MAJOR;
tls12minor = TLSv1_2_MINOR; tls12minor = TLSv1_2_MINOR;
@@ -3613,6 +3614,7 @@ int SendTls13ClientHello(WOLFSSL* ssl)
} }
#endif #endif
ssl->options.buildingMsg = 0;
#ifdef WOLFSSL_DTLS13 #ifdef WOLFSSL_DTLS13
if (ssl->options.dtls) { if (ssl->options.dtls) {
ret = Dtls13HandshakeSend(ssl, args->output, args->sendSz, ret = Dtls13HandshakeSend(ssl, args->output, args->sendSz,
@@ -5615,6 +5617,7 @@ int SendTls13ServerHello(WOLFSSL* ssl, byte extMsgType)
return ret; return ret;
} }
ssl->options.buildingMsg = 1;
#ifdef WOLFSSL_DTLS13 #ifdef WOLFSSL_DTLS13
if (ssl->options.dtls) if (ssl->options.dtls)
idx = DTLS_RECORD_HEADER_SZ + DTLS_HANDSHAKE_HEADER_SZ; idx = DTLS_RECORD_HEADER_SZ + DTLS_HANDSHAKE_HEADER_SZ;
@@ -5724,10 +5727,11 @@ int SendTls13ServerHello(WOLFSSL* ssl, byte extMsgType)
if (extMsgType == server_hello) if (extMsgType == server_hello)
ssl->options.serverState = SERVER_HELLO_COMPLETE; ssl->options.serverState = SERVER_HELLO_COMPLETE;
ssl->options.buildingMsg = 0;
#ifdef WOLFSSL_DTLS13 #ifdef WOLFSSL_DTLS13
if (ssl->options.dtls) { if (ssl->options.dtls) {
ret = Dtls13HandshakeSend(ssl, output, sendSz, sendSz, ret = Dtls13HandshakeSend(ssl, output, sendSz, sendSz,
server_hello, 0); extMsgType, 0);
WOLFSSL_LEAVE("SendTls13ServerHello", ret); WOLFSSL_LEAVE("SendTls13ServerHello", ret);
WOLFSSL_END(WC_FUNC_SERVER_HELLO_SEND); WOLFSSL_END(WC_FUNC_SERVER_HELLO_SEND);
@@ -5765,6 +5769,7 @@ static int SendTls13EncryptedExtensions(WOLFSSL* ssl)
WOLFSSL_START(WC_FUNC_ENCRYPTED_EXTENSIONS_SEND); WOLFSSL_START(WC_FUNC_ENCRYPTED_EXTENSIONS_SEND);
WOLFSSL_ENTER("SendTls13EncryptedExtensions"); WOLFSSL_ENTER("SendTls13EncryptedExtensions");
ssl->options.buildingMsg = 1;
ssl->keys.encryptionOn = 1; ssl->keys.encryptionOn = 1;
#ifdef WOLFSSL_DTLS13 #ifdef WOLFSSL_DTLS13
@@ -5858,6 +5863,7 @@ static int SendTls13EncryptedExtensions(WOLFSSL* ssl)
#ifdef WOLFSSL_DTLS13 #ifdef WOLFSSL_DTLS13
if (ssl->options.dtls) { if (ssl->options.dtls) {
ssl->options.buildingMsg = 0;
ret = Dtls13HandshakeSend(ssl, output, sendSz, idx, ret = Dtls13HandshakeSend(ssl, output, sendSz, idx,
encrypted_extensions, 1); encrypted_extensions, 1);
@@ -5878,7 +5884,7 @@ static int SendTls13EncryptedExtensions(WOLFSSL* ssl)
return sendSz; return sendSz;
ssl->buffers.outputBuffer.length += sendSz; ssl->buffers.outputBuffer.length += sendSz;
ssl->options.buildingMsg = 0;
ssl->options.serverState = SERVER_ENCRYPTED_EXTENSIONS_COMPLETE; ssl->options.serverState = SERVER_ENCRYPTED_EXTENSIONS_COMPLETE;
if (!ssl->options.groupMessages) if (!ssl->options.groupMessages)
@@ -5915,6 +5921,8 @@ static int SendTls13CertificateRequest(WOLFSSL* ssl, byte* reqCtx,
WOLFSSL_START(WC_FUNC_CERTIFICATE_REQUEST_SEND); WOLFSSL_START(WC_FUNC_CERTIFICATE_REQUEST_SEND);
WOLFSSL_ENTER("SendTls13CertificateRequest"); WOLFSSL_ENTER("SendTls13CertificateRequest");
ssl->options.buildingMsg = 1;
if (ssl->options.side == WOLFSSL_SERVER_END) if (ssl->options.side == WOLFSSL_SERVER_END)
InitSuitesHashSigAlgo(ssl->suites, 1, 1, 1, InitSuitesHashSigAlgo(ssl->suites, 1, 1, 1,
0, 1, ssl->buffers.keySz); 0, 1, ssl->buffers.keySz);
@@ -5966,6 +5974,7 @@ static int SendTls13CertificateRequest(WOLFSSL* ssl, byte* reqCtx,
#ifdef WOLFSSL_DTLS13 #ifdef WOLFSSL_DTLS13
if (ssl->options.dtls) { if (ssl->options.dtls) {
ssl->options.buildingMsg = 0;
ret = ret =
Dtls13HandshakeSend(ssl, output, sendSz, i, certificate_request, 1); Dtls13HandshakeSend(ssl, output, sendSz, i, certificate_request, 1);
@@ -5993,6 +6002,7 @@ static int SendTls13CertificateRequest(WOLFSSL* ssl, byte* reqCtx,
#endif #endif
ssl->buffers.outputBuffer.length += sendSz; ssl->buffers.outputBuffer.length += sendSz;
ssl->options.buildingMsg = 0;
if (!ssl->options.groupMessages) if (!ssl->options.groupMessages)
ret = SendBuffered(ssl); ret = SendBuffered(ssl);
@@ -6498,6 +6508,8 @@ static int SendTls13Certificate(WOLFSSL* ssl)
WOLFSSL_START(WC_FUNC_CERTIFICATE_SEND); WOLFSSL_START(WC_FUNC_CERTIFICATE_SEND);
WOLFSSL_ENTER("SendTls13Certificate"); WOLFSSL_ENTER("SendTls13Certificate");
ssl->options.buildingMsg = 1;
#ifdef WOLFSSL_POST_HANDSHAKE_AUTH #ifdef WOLFSSL_POST_HANDSHAKE_AUTH
if (ssl->options.side == WOLFSSL_CLIENT_END && ssl->certReqCtx != NULL) { if (ssl->options.side == WOLFSSL_CLIENT_END && ssl->certReqCtx != NULL) {
certReqCtxLen = ssl->certReqCtx->len; certReqCtxLen = ssl->certReqCtx->len;
@@ -6599,8 +6611,6 @@ static int SendTls13Certificate(WOLFSSL* ssl)
} }
#endif /* WOLFSSL_DTLS13 */ #endif /* WOLFSSL_DTLS13 */
ssl->options.buildingMsg = 1;
if (ssl->fragOffset == 0) { if (ssl->fragOffset == 0) {
if (headerSz + certSz + extSz + certChainSz <= if (headerSz + certSz + extSz + certChainSz <=
maxFragment - HANDSHAKE_HEADER_SZ) { maxFragment - HANDSHAKE_HEADER_SZ) {
@@ -6716,6 +6726,7 @@ static int SendTls13Certificate(WOLFSSL* ssl)
#ifdef WOLFSSL_DTLS13 #ifdef WOLFSSL_DTLS13
if (ssl->options.dtls) { if (ssl->options.dtls) {
/* DTLS1.3 uses a separate variable and logic for fragments */ /* DTLS1.3 uses a separate variable and logic for fragments */
ssl->options.buildingMsg = 0;
ssl->fragOffset = 0; ssl->fragOffset = 0;
ret = Dtls13HandshakeSend(ssl, output, sendSz, i, certificate, 1); ret = Dtls13HandshakeSend(ssl, output, sendSz, i, certificate, 1);
} }
@@ -6739,6 +6750,7 @@ static int SendTls13Certificate(WOLFSSL* ssl)
#endif #endif
ssl->buffers.outputBuffer.length += sendSz; ssl->buffers.outputBuffer.length += sendSz;
ssl->options.buildingMsg = 0;
if (!ssl->options.groupMessages) if (!ssl->options.groupMessages)
ret = SendBuffered(ssl); ret = SendBuffered(ssl);
} }
@@ -6822,6 +6834,8 @@ static int SendTls13CertificateVerify(WOLFSSL* ssl)
WOLFSSL_START(WC_FUNC_CERTIFICATE_VERIFY_SEND); WOLFSSL_START(WC_FUNC_CERTIFICATE_VERIFY_SEND);
WOLFSSL_ENTER("SendTls13CertificateVerify"); WOLFSSL_ENTER("SendTls13CertificateVerify");
ssl->options.buildingMsg = 1;
#if defined(WOLFSSL_RENESAS_TSIP_TLS) && (WOLFSSL_RENESAS_TSIP_VER >= 115) #if defined(WOLFSSL_RENESAS_TSIP_TLS) && (WOLFSSL_RENESAS_TSIP_VER >= 115)
ret = tsip_Tls13SendCertVerify(ssl); ret = tsip_Tls13SendCertVerify(ssl);
if (ret != CRYPTOCB_UNAVAILABLE) { if (ret != CRYPTOCB_UNAVAILABLE) {
@@ -7184,6 +7198,7 @@ static int SendTls13CertificateVerify(WOLFSSL* ssl)
{ {
#ifdef WOLFSSL_DTLS13 #ifdef WOLFSSL_DTLS13
if (ssl->options.dtls) { if (ssl->options.dtls) {
ssl->options.buildingMsg = 0;
ret = Dtls13HandshakeSend(ssl, args->output, ret = Dtls13HandshakeSend(ssl, args->output,
MAX_CERT_VERIFY_SZ + MAX_MSG_EXTRA + MAX_MSG_EXTRA, MAX_CERT_VERIFY_SZ + MAX_MSG_EXTRA + MAX_MSG_EXTRA,
args->sendSz, certificate_verify, 1); args->sendSz, certificate_verify, 1);
@@ -7219,7 +7234,7 @@ static int SendTls13CertificateVerify(WOLFSSL* ssl)
#endif #endif
ssl->buffers.outputBuffer.length += args->sendSz; ssl->buffers.outputBuffer.length += args->sendSz;
ssl->options.buildingMsg = 0;
if (!ssl->options.groupMessages) if (!ssl->options.groupMessages)
ret = SendBuffered(ssl); ret = SendBuffered(ssl);
break; break;
@@ -7955,6 +7970,7 @@ static int SendTls13Finished(WOLFSSL* ssl)
WOLFSSL_START(WC_FUNC_FINISHED_SEND); WOLFSSL_START(WC_FUNC_FINISHED_SEND);
WOLFSSL_ENTER("SendTls13Finished"); WOLFSSL_ENTER("SendTls13Finished");
ssl->options.buildingMsg = 1;
#ifdef WOLFSSL_DTLS13 #ifdef WOLFSSL_DTLS13
if (ssl->options.dtls) { if (ssl->options.dtls) {
headerSz = DTLS_HANDSHAKE_HEADER_SZ; headerSz = DTLS_HANDSHAKE_HEADER_SZ;
@@ -8057,6 +8073,7 @@ static int SendTls13Finished(WOLFSSL* ssl)
#endif #endif
ssl->buffers.outputBuffer.length += sendSz; ssl->buffers.outputBuffer.length += sendSz;
ssl->options.buildingMsg = 0;
} }
if (ssl->options.side == WOLFSSL_SERVER_END) { if (ssl->options.side == WOLFSSL_SERVER_END) {
@@ -8402,6 +8419,7 @@ static int SendTls13EndOfEarlyData(WOLFSSL* ssl)
length = 0; length = 0;
sendSz = idx + length + MAX_MSG_EXTRA; sendSz = idx + length + MAX_MSG_EXTRA;
ssl->options.buildingMsg = 1;
/* Check buffers are big enough and grow if needed. */ /* Check buffers are big enough and grow if needed. */
if ((ret = CheckAvailableSize(ssl, sendSz)) != 0) if ((ret = CheckAvailableSize(ssl, sendSz)) != 0)
@@ -8425,6 +8443,7 @@ static int SendTls13EndOfEarlyData(WOLFSSL* ssl)
if ((ret = SetKeysSide(ssl, ENCRYPT_SIDE_ONLY)) != 0) if ((ret = SetKeysSide(ssl, ENCRYPT_SIDE_ONLY)) != 0)
return ret; return ret;
ssl->options.buildingMsg = 0;
if (!ssl->options.groupMessages) if (!ssl->options.groupMessages)
ret = SendBuffered(ssl); ret = SendBuffered(ssl);

5
wolfssl/internal.h
View File

@@ -1314,6 +1314,7 @@ enum Misc {
DTLS_HANDSHAKE_HEADER_SZ = 12, /* normal + seq(2) + offset(3) + length(3) */ DTLS_HANDSHAKE_HEADER_SZ = 12, /* normal + seq(2) + offset(3) + length(3) */
DTLS_RECORD_HEADER_SZ = 13, /* normal + epoch(2) + seq_num(6) */ DTLS_RECORD_HEADER_SZ = 13, /* normal + epoch(2) + seq_num(6) */
DTLS_UNIFIED_HEADER_MIN_SZ = 2, DTLS_UNIFIED_HEADER_MIN_SZ = 2,
DTLS_RECVD_RL_HEADER_MAX_SZ = 5, /* flags + seq_number(2) + length(20) */
DTLS_RECORD_HEADER_MAX_SZ = 13, DTLS_RECORD_HEADER_MAX_SZ = 13,
DTLS_HANDSHAKE_EXTRA = 8, /* diff from normal */ DTLS_HANDSHAKE_EXTRA = 8, /* diff from normal */
DTLS_RECORD_EXTRA = 8, /* diff from normal */ DTLS_RECORD_EXTRA = 8, /* diff from normal */
@@ -4368,7 +4369,6 @@ typedef enum EarlyDataState {
typedef struct Dtls13UnifiedHdrInfo { typedef struct Dtls13UnifiedHdrInfo {
word16 recordLength; word16 recordLength;
word16 headerLength;
byte seqLo; byte seqLo;
byte seqHi; byte seqHi;
byte seqHiPresent:1; byte seqHiPresent:1;
@@ -4658,7 +4658,7 @@ struct WOLFSSL {
Dtls13Epoch *dtls13DecryptEpoch; Dtls13Epoch *dtls13DecryptEpoch;
w64wrapper dtls13Epoch; w64wrapper dtls13Epoch;
w64wrapper dtls13PeerEpoch; w64wrapper dtls13PeerEpoch;
byte dtls13CurRL[DTLS_RECVD_RL_HEADER_MAX_SZ];
word16 dtls13CurRlLength; word16 dtls13CurRlLength;
/* used to store the message if it needs to be fragmented */ /* used to store the message if it needs to be fragmented */
@@ -5453,6 +5453,7 @@ WOLFSSL_LOCAL int Dtls13RlAddPlaintextHeader(WOLFSSL* ssl, byte* out,
WOLFSSL_LOCAL int Dtls13EncryptRecordNumber(WOLFSSL* ssl, byte* hdr, WOLFSSL_LOCAL int Dtls13EncryptRecordNumber(WOLFSSL* ssl, byte* hdr,
word16 recordLength); word16 recordLength);
WOLFSSL_LOCAL int Dtls13IsUnifiedHeader(byte header_flags); WOLFSSL_LOCAL int Dtls13IsUnifiedHeader(byte header_flags);
WOLFSSL_LOCAL int Dtls13GetUnifiedHeaderSize(const byte input, word16* size);
WOLFSSL_LOCAL int Dtls13ParseUnifiedRecordLayer(WOLFSSL* ssl, const byte* input, WOLFSSL_LOCAL int Dtls13ParseUnifiedRecordLayer(WOLFSSL* ssl, const byte* input,
word16 input_size, Dtls13UnifiedHdrInfo* hdrInfo); word16 input_size, Dtls13UnifiedHdrInfo* hdrInfo);
WOLFSSL_LOCAL int Dtls13HandshakeSend(WOLFSSL* ssl, byte* output, WOLFSSL_LOCAL int Dtls13HandshakeSend(WOLFSSL* ssl, byte* output,