Introduce content_len_size variable in ECHDE-PSK part of ssl_write_client_key_exchange()

Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-03-23 17:54:38 +01:00 · 2022-03-23 17:54:38 +01:00 · fc834f2e2c
commit fc834f2e2c
parent 0bdb68a242
1 changed files with 5 additions and 1 deletions
--- a/library/ssl_tls12_client.c
+++ b/library/ssl_tls12_client.c
@ -3025,10 +3025,14 @@ ecdh_calc_secret:
        if( ssl_conf_has_static_raw_psk( ssl->conf ) == 0 )
            return( MBEDTLS_ERR_SSL_FEATURE_UNAVAILABLE );

+        /* uint16 to store content length */
+        const size_t content_len_size = 2;
+
        header_len = 4;
        content_len = ssl->conf->psk_identity_len;

-        if( header_len + 2 + content_len > MBEDTLS_SSL_OUT_CONTENT_LEN )
+        if( header_len + content_len_size + content_len
+                    > MBEDTLS_SSL_OUT_CONTENT_LEN )
        {
            MBEDTLS_SSL_DEBUG_MSG( 1,
                ( "psk identity too long or SSL buffer too short" ) );