Correct bounds check in ssl_buffer_message() The previous bounds check omitted the DTLS handshake header.

commit: 96a6c69d0c41df4b09fc43f05a83c556c5f96fa7 [log] [tgz]
author: Hanno Becker <hanno.becker@arm.com> Tue Aug 21 15:56:03 2018 +0100
committer: Hanno Becker <hanno.becker@arm.com> Tue Aug 21 16:11:09 2018 +0100
tree: 51f157bcca3f7112cb429a10f65be6aec687bcb9
parent: e0b150f96bfa4430d5d3b960f9d40153dfa13dfb [diff] [blame]
diff --git a/library/ssl_tls.c b/library/ssl_tls.c
index f4ed28a..17010b5 100644
--- a/library/ssl_tls.c
+++ b/library/ssl_tls.c

@@ -4503,7 +4503,7 @@
                  * This is an implementation-specific limitation
                  * and not one from the standard, hence it is not
                  * checked in ssl_check_hs_header(). */
-                if( msg_len > MBEDTLS_SSL_IN_CONTENT_LEN )
+                if( msg_len + 12 > MBEDTLS_SSL_IN_CONTENT_LEN )
                 {
                     /* Ignore message */
                     goto exit;
commit	96a6c69d0c41df4b09fc43f05a83c556c5f96fa7	[log] [tgz]
author	Hanno Becker <hanno.becker@arm.com>	Tue Aug 21 15:56:03 2018 +0100
committer	Hanno Becker <hanno.becker@arm.com>	Tue Aug 21 16:11:09 2018 +0100
tree	51f157bcca3f7112cb429a10f65be6aec687bcb9
parent	e0b150f96bfa4430d5d3b960f9d40153dfa13dfb [diff] [blame]