Double check that record expansion is as expected during decryption

commit: 93012fe8e8f1ef5660a305af7cb6282e062c3399 [log] [tgz]
author: Hanno Becker <hanno.becker@arm.com> Tue Aug 07 14:30:18 2018 +0100
committer: Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com> Mon Apr 29 12:17:58 2019 +0200
tree: 6fc55dd3ed56838bab4494b53687a7e8fbb35592
parent: a795323cd503fb9579b3561814e7500ab982ce5f [diff] [blame]
diff --git a/library/ssl_tls.c b/library/ssl_tls.c
index 93bcde4..ffbaf2d 100644
--- a/library/ssl_tls.c
+++ b/library/ssl_tls.c

@@ -4340,6 +4340,11 @@
             return( ret );
         }
 
+        if( ssl->in_iv + rec.data_offset != ssl->in_msg )
+        {
+            /* Should never happen */
+            return( MBEDTLS_ERR_SSL_INTERNAL_ERROR );
+        }
 
         ssl->in_msglen = rec.data_len;
         ssl->in_len[0] = (unsigned char)( rec.data_len >> 8 );
commit	93012fe8e8f1ef5660a305af7cb6282e062c3399	[log] [tgz]
author	Hanno Becker <hanno.becker@arm.com>	Tue Aug 07 14:30:18 2018 +0100
committer	Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com>	Mon Apr 29 12:17:58 2019 +0200
tree	6fc55dd3ed56838bab4494b53687a7e8fbb35592
parent	a795323cd503fb9579b3561814e7500ab982ce5f [diff] [blame]