wolfSSL/wolfssl
1
0
Fork 1
mirror of https://github.com/wolfSSL/wolfssl.git synced 2025-07-29 18:27:29 +02:00
Code Issues Packages Projects Releases Wiki Activity

Merge pull request #3118 from julek-wolfssl/aead-only-fix

Browse Source 
Check for WOLFSSL_AEAD_ONLY in wolfSSL_dtls_import_internal
This commit is contained in:
toddouska
2020-08-11 09:33:47 -07:00
committed by GitHub
parent 4e6bc02257 42c8f8f9b5
commit 87a00df2ea
1 changed files with 8 additions and 7 deletions
Download Patch File Download Diff File Expand all files Collapse all files

15
src/internal.c
View File

@ -1539,25 +1539,26 @@ int wolfSSL_dtls_import_internal(WOLFSSL* ssl, byte* buf, word32 sz)
idx += ret;
SetKeysSide(ssl, ENCRYPT_AND_DECRYPT_SIDE);
/* set hmac function to use when verifying */
if (ssl->options.tls == 1 || ssl->options.tls1_1 == 1 ||
ssl->options.dtls == 1) {
ssl->hmac = TLS_hmac;
}
/* make sure is a valid suite used */
if (wolfSSL_get_cipher(ssl) == NULL) {
WOLFSSL_MSG("Can not match cipher suite imported");
return MATCH_SUITE_ERROR;
}
#ifndef WOLFSSL_AEAD_ONLY
/* set hmac function to use when verifying */
if (ssl->options.tls == 1 || ssl->options.tls1_1 == 1 ||
ssl->options.dtls == 1) {
ssl->hmac = TLS_hmac;
}
/* do not allow stream ciphers with DTLS, except for NULL cipher */
if (ssl->specs.cipher_type == stream &&
ssl->specs.bulk_cipher_algorithm != wolfssl_cipher_null) {
WOLFSSL_MSG("Can not import stream ciphers for DTLS");
return SANITY_CIPHER_E;
}
#endif /* !WOLFSSL_AEAD_ONLY */
return idx;
}