wolfSSL/wolfssl
1
0
Fork 1
mirror of https://github.com/wolfSSL/wolfssl.git synced 2025-08-03 20:54:41 +02:00
Code Issues Packages Projects Releases Wiki Activity

don't send session ID on server side if session cache is off unless we're echoing session ID as part of session tickets

Browse Source
This commit is contained in:
toddouska
2017-04-12 10:54:19 -07:00
parent 213afe18c3
commit b1d59a2334
1 changed files with 19 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

19
src/internal.c
View File

@@ -17202,6 +17202,8 @@ int DoSessionTicket(WOLFSSL* ssl, const byte* input, word32* inOutIdx,
int sendSz; int sendSz;
int ret; int ret;
byte sessIdSz = ID_LEN; byte sessIdSz = ID_LEN;
byte echoId = 0; /* ticket echo id flag */
byte cacheOff = 0; /* session cache off flag */
length = VERSION_SZ + RAN_LEN length = VERSION_SZ + RAN_LEN
+ ID_LEN + ENUM_LEN + ID_LEN + ENUM_LEN
@@ -17219,6 +17221,7 @@ int DoSessionTicket(WOLFSSL* ssl, const byte* input, word32* inOutIdx,
return BUFFER_ERROR; return BUFFER_ERROR;
} }
length -= (ID_LEN - sessIdSz); /* adjust ID_LEN assumption */ length -= (ID_LEN - sessIdSz); /* adjust ID_LEN assumption */
echoId = 1;
} }
#endif /* HAVE_SESSION_TICKET */ #endif /* HAVE_SESSION_TICKET */
#else #else
@@ -17227,6 +17230,22 @@ int DoSessionTicket(WOLFSSL* ssl, const byte* input, word32* inOutIdx,
} }
#endif #endif
/* is the session cahce off at build or runtime */
#ifdef NO_SESSION_CACHE
cacheOff = 1;
#else
if (ssl->options.sessionCacheOff == 1) {
cacheOff = 1;
}
#endif
/* if no session cache don't send a session ID unless we're echoing
* an ID as part of session tickets */
if (echoId == 0 && cacheOff == 1) {
length -= ID_LEN; /* adjust ID_LEN assumption */
sessIdSz = 0;
}
/* check for avalaible size */ /* check for avalaible size */
if ((ret = CheckAvailableSize(ssl, MAX_HELLO_SZ)) != 0) if ((ret = CheckAvailableSize(ssl, MAX_HELLO_SZ)) != 0)
return ret; return ret;