DoTls13ClientHello: session length is a sender side requirement

F-433
This commit is contained in:
Juliusz Sosinowicz
2026-03-09 18:49:31 +01:00
parent 8a57ca84c3
commit 9c4e77d47d
-4
View File
@@ -6869,11 +6869,7 @@ int DoTls13ClientHello(WOLFSSL* ssl, const byte* input, word32* inOutIdx,
#endif
sessIdSz = input[args->idx++];
#ifndef WOLFSSL_TLS13_MIDDLEBOX_COMPAT
if (sessIdSz > ID_LEN)
#else
if (sessIdSz != ID_LEN && sessIdSz != 0)
#endif
{
ERROR_OUT(INVALID_PARAMETER, exit_dch);
}