Merge remote-tracking branch 'restricted/pr/403' into development-restricted

* restricted/pr/403: Correct record header size in case of TLS Don't allocate space for DTLS header if DTLS is disabled Improve debugging output Adapt ChangeLog Add run-time check for handshake message size in ssl_write_record Add run-time check for record content size in ssl_encrypt_buf Add compile-time checks for size of record content and payload
2017-12-19 11:31:20 +01:00 · 2017-12-19 11:31:20 +01:00 · d04c623ed6
commit d04c623ed6
parent 1827368b01 25d6d1a1df
3 changed files with 45 additions and 5 deletions
--- a/include/mbedtls/ssl_internal.h
+++ b/include/mbedtls/ssl_internal.h
@ -24,6 +24,7 @@
 #define MBEDTLS_SSL_INTERNAL_H

 #include "ssl.h"
+#include "cipher.h"

 #if defined(MBEDTLS_MD5_C)
 #include "md5.h"
@ -138,13 +139,33 @@
 #define MBEDTLS_SSL_PADDING_ADD              0
 #endif

-#define MBEDTLS_SSL_BUFFER_LEN  ( MBEDTLS_SSL_MAX_CONTENT_LEN               \
-                        + MBEDTLS_SSL_COMPRESSION_ADD               \
-                        + 29 /* counter + header + IV */    \
-                        + MBEDTLS_SSL_MAC_ADD                       \
-                        + MBEDTLS_SSL_PADDING_ADD                   \
+#define MBEDTLS_SSL_PAYLOAD_LEN ( MBEDTLS_SSL_MAX_CONTENT_LEN    \
+                        + MBEDTLS_SSL_COMPRESSION_ADD            \
+                        + MBEDTLS_MAX_IV_LENGTH                  \
+                        + MBEDTLS_SSL_MAC_ADD                    \
+                        + MBEDTLS_SSL_PADDING_ADD                \
                        )

+/*
+ * Check that we obey the standard's message size bounds
+ */
+
+#if MBEDTLS_SSL_MAX_CONTENT_LEN > 16384
+#error Bad configuration - record content too large.
+#endif
+
+#if MBEDTLS_SSL_PAYLOAD_LEN > 16384 + 2048
+#error Bad configuration - protected record payload too large.
+#endif
+
+/* Note: Even though the TLS record header is only 5 bytes
+   long, we're internally using 8 bytes to store the
+   implicit sequence number. */
+#define MBEDTLS_SSL_HEADER_LEN 13
+
+#define MBEDTLS_SSL_BUFFER_LEN  \
+    ( ( MBEDTLS_SSL_HEADER_LEN ) + ( MBEDTLS_SSL_PAYLOAD_LEN ) )
+
 /*
 * TLS extension flags (for extensions with outgoing ServerHello content
 * that need it (e.g. for RENEGOTIATION_INFO the server already knows because