Add record size checking during handshake

Signed-off-by: Waleed Elmelegy <waleed.elmelegy@arm.com>
2023-12-05 20:08:51 +00:00 · 2023-12-05 20:08:51 +00:00 · 9aec1c71f2
commit 9aec1c71f2
parent f482dcc6c7
6 changed files with 79 additions and 58 deletions
--- a/library/ssl_misc.h
+++ b/library/ssl_misc.h
@ -441,9 +441,9 @@ size_t mbedtls_ssl_get_input_max_frag_len(const mbedtls_ssl_context *ssl);

 #if defined(MBEDTLS_SSL_RECORD_SIZE_LIMIT)
 /**
- * \brief          Return the record size limit (in bytes) for
+ * \brief          Return the RecordSizeLimit (in bytes) for
 *                 the output buffer. This is less than the value requested by the
- *                 peer (using RFC 8449), since it subtracts the space required for the
+ *                 peer (see RFC 8449), since it subtracts the space required for the
 *                 content type and padding of the TLSInnerPlaintext struct (RFC 8446).
 *                 Returns MBEDTLS_SSL_OUT_CONTENT_LEN if no limit was requested by the peer.
 *