Merge pull request #873 from hanno-arm/ssl_write_client_hello

Bounds checks in ssl_write_client_hello
2020-06-15 10:57:51 +02:00 · 2020-06-15 10:57:51 +02:00 · a92e3def48
commit a92e3def48
parent 5b66d44f5a b7b35e125b
9 changed files with 681 additions and 389 deletions
--- a/library/ssl_tls.c
+++ b/library/ssl_tls.c
@ -4665,7 +4665,9 @@ int mbedtls_ssl_conf_alpn_protocols( mbedtls_ssl_config *conf, const char **prot
        cur_len = strlen( *p );
        tot_len += cur_len;

-        if( cur_len == 0 || cur_len > 255 || tot_len > 65535 )
+        if( ( cur_len == 0 ) ||
+            ( cur_len > MBEDTLS_SSL_MAX_ALPN_NAME_LEN ) ||
+            ( tot_len > MBEDTLS_SSL_MAX_ALPN_LIST_LEN ) )
            return( MBEDTLS_ERR_SSL_BAD_INPUT_DATA );
    }