wolfSSL/wolfssl
1
0
Fork 1
mirror of https://github.com/wolfSSL/wolfssl.git synced 2025-07-30 10:47:28 +02:00
Code Issues Packages Projects Releases Wiki Activity

Merge pull request #4294 from dgarske/tls13_earlydata

Browse Source 
Fix early data max size handling in TLS v1.3
This commit is contained in:
Sean Parkinson
2021-08-18 08:48:42 +10:00
committed by GitHub
parent 69d01afd3a 0c74e18eaf
commit 8f7e09d9b5
1 changed files with 1 additions and 6 deletions
Download Patch File Download Diff File Expand all files Collapse all files

7
src/internal.c
View File

@ -15841,20 +15841,15 @@ int DoApplicationData(WOLFSSL* ssl, byte* input, word32* inOutIdx)
int process = 0; int process = 0;
if (ssl->options.side == WOLFSSL_SERVER_END) { if (ssl->options.side == WOLFSSL_SERVER_END) {
ssl->earlyDataSz += ssl->curSize;
if ((ssl->earlyData != no_early_data) && if ((ssl->earlyData != no_early_data) &&
(ssl->options.clientState == CLIENT_HELLO_COMPLETE)) { (ssl->options.clientState == CLIENT_HELLO_COMPLETE)) {
process = 1; process = 1;
} }
if (!process && (ssl->earlyDataSz <= ssl->options.maxEarlyDataSz)) { if (!process) {
WOLFSSL_MSG("Ignoring EarlyData!"); WOLFSSL_MSG("Ignoring EarlyData!");
*inOutIdx = ssl->buffers.inputBuffer.length; *inOutIdx = ssl->buffers.inputBuffer.length;
return 0; return 0;
} }
if (ssl->earlyDataSz > ssl->options.maxEarlyDataSz) {
WOLFSSL_MSG("Too much EarlyData!");
process = 0;
}
} }
if (!process) { if (!process) {
WOLFSSL_MSG("Received App data before a handshake completed"); WOLFSSL_MSG("Received App data before a handshake completed");