Merge pull request #133 from SalusaSecondus/master

colmmacc · colmmacc · commit 8a7b901445c9 · 2015-07-06T17:16:50.000-07:00
Use S2N_TLS_SESSION_ID_LEN rather than constant 32 when checking session_id_len
diff --git a/tls/s2n_client_hello.c b/tls/s2n_client_hello.c
@@ -57,7 +57,7 @@ int s2n_client_hello_recv(struct s2n_connection *conn)
     }
     conn->client_hello_version = conn->client_protocol_version;
 
-    if (session_id_len > 32) {
+    if (session_id_len > S2N_TLS_SESSION_ID_LEN) {
         S2N_ERROR(S2N_ERR_BAD_MESSAGE);
     }
 

Original file line number	Diff line number	Diff line change
`@@ -57,7 +57,7 @@ int s2n_client_hello_recv(struct s2n_connection *conn)`
`57`	`57`	`}`
`58`	`58`	`conn->client_hello_version = conn->client_protocol_version;`
`59`	`59`
`60`		`- if (session_id_len > 32) {`
	`60`	`+ if (session_id_len > S2N_TLS_SESSION_ID_LEN) {`
`61`	`61`	`S2N_ERROR(S2N_ERR_BAD_MESSAGE);`
`62`	`62`	`}`
`63`	`63`