Avoid debug message that might leak length
The length to the debug message could conceivably leak through the time it takes to print it, and that length would in turn reveal whether padding was correct or not.
This commit is contained in:
Manuel Pégourié-Gonnard
parent
aeeaaf271c
commit
7c34432b2d
1 changed files with 2 additions and 0 deletions
|
|
@ -1974,8 +1974,10 @@ static int ssl_decrypt_buf( mbedtls_ssl_context *ssl )
|
|||
return( MBEDTLS_ERR_SSL_INTERNAL_ERROR );
|
||||
}
|
||||
|
||||
#if defined(MBEDTLS_SSL_DEBUG_ALL)
|
||||
MBEDTLS_SSL_DEBUG_BUF( 4, "raw buffer after decryption",
|
||||
ssl->in_msg, ssl->in_msglen );
|
||||
#endif
|
||||
|
||||
/*
|
||||
* Authenticate if not done yet.
|
||||
|
|
|
|||
Loading…
Add table
Add a link
Reference in a new issue