Revised hostname length check from review

2015-09-28 19:22:33 +01:00 · 2015-09-28 19:22:33 +01:00 · 9f81231fb8
commit 9f81231fb8
parent ed9976634f
2 changed files with 2 additions and 3 deletions
--- a/include/mbedtls/ssl.h
+++ b/include/mbedtls/ssl.h
@ -139,8 +139,7 @@
 #define MBEDTLS_SSL_TRANSPORT_STREAM            0   /*!< TLS      */
 #define MBEDTLS_SSL_TRANSPORT_DATAGRAM          1   /*!< DTLS     */

-#define MBEDTLS_SSL_MAX_HOST_NAME               255 /*!< Maximum host name
-defined in RFC 1035 */
+#define MBEDTLS_SSL_MAX_HOST_NAME_LEN           255 /*!< Maximum host name defined in RFC 1035 */

 /* RFC 6066 section 4, see also mfl_code_to_length in ssl_tls.c
 * NONE must be zero so that memset()ing structure to zero works */
--- a/library/ssl_tls.c
+++ b/library/ssl_tls.c
@ -5833,7 +5833,7 @@ int mbedtls_ssl_set_hostname( mbedtls_ssl_context *ssl, const char *hostname )
    if( hostname_len + 1 == 0 )
        return( MBEDTLS_ERR_SSL_BAD_INPUT_DATA );

-    if( hostname_len > MBEDTLS_SSL_MAX_HOST_NAME )
+    if( hostname_len > MBEDTLS_SSL_MAX_HOST_NAME_LEN )
        return( MBEDTLS_ERR_SSL_BAD_INPUT_DATA );

    ssl->hostname = mbedtls_calloc( 1, hostname_len + 1 );