ssl_ticket.c: Fix ticket lifetime when parsing

This is the lifetime of the key used to decrypt the ticket that should be used when parsing a ticket, not the ticket module lifetime that may have been changed since the key was created. Signed-off-by: Ronald Cron <ronald.cron@arm.com>
2025-02-05 18:40:01 +00:00 · 2024-03-08 16:34:59 +01:00 · 2024-03-08 16:34:59 +01:00 · 97dfc726f3
commit 97dfc726f3
parent 0050dff6ab
1 changed files with 1 additions and 1 deletions
--- a/library/ssl_ticket.c
+++ b/library/ssl_ticket.c
@ -504,7 +504,7 @@ int mbedtls_ssl_ticket_parse(void *p_ticket,
 #if defined(MBEDTLS_HAVE_TIME)
    mbedtls_ms_time_t ticket_creation_time, ticket_age;
    mbedtls_ms_time_t ticket_lifetime =
-        (mbedtls_ms_time_t) ctx->ticket_lifetime * 1000;
+        (mbedtls_ms_time_t) key->lifetime * 1000;

    ret = mbedtls_ssl_session_get_ticket_creation_time(session,
                                                       &ticket_creation_time);