mirror/mbedtls
1
0
Fork 0
mirror of https://github.com/Mbed-TLS/mbedtls.git synced 2025-03-31 01:20:35 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity

Rm unneeded counter increment with DTLS

Browse Source
This commit is contained in:
Manuel Pégourié-Gonnard 2014-09-24 09:46:10 +02:00 committed by Paul Bakker
parent 6312e0f4e6
commit ea22ce577e
1 changed files with 17 additions and 10 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

27
library/ssl_tls.c
View File

@ -1705,17 +1705,24 @@ static int ssl_decrypt_buf( ssl_context *ssl )
else else
ssl->nb_zero = 0; ssl->nb_zero = 0;
/* Input counter not used with DTLS right now, #if defined(POLARSSL_SSL_PROTO_DTLS)
* but it doesn't hurt to have this part ready */ if( ssl->transport == SSL_TRANSPORT_DATAGRAM )
for( i = 8; i > ssl_ep_len( ssl ); i-- )
if( ++ssl->in_ctr[i - 1] != 0 )
break;
/* The loop goes to its end iff the counter is wrapping */
if( i == ssl_ep_len( ssl ) )
{ {
SSL_DEBUG_MSG( 1, ( "incoming message counter would wrap" ) ); ; /* in_ctr handled differently in DTLS */
return( POLARSSL_ERR_SSL_COUNTER_WRAPPING ); }
else
#endif
{
for( i = 8; i > ssl_ep_len( ssl ); i-- )
if( ++ssl->in_ctr[i - 1] != 0 )
break;
/* The loop goes to its end iff the counter is wrapping */
if( i == ssl_ep_len( ssl ) )
{
SSL_DEBUG_MSG( 1, ( "incoming message counter would wrap" ) );
return( POLARSSL_ERR_SSL_COUNTER_WRAPPING );
}
} }
SSL_DEBUG_MSG( 2, ( "<= decrypt buf" ) ); SSL_DEBUG_MSG( 2, ( "<= decrypt buf" ) );