generic-library/openssl
1
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity

Update DTLS code to match CBC decoding in TLS.

Browse Source 
This change updates the DTLS code to match the constant-time CBC
behaviour in the TLS.
(cherry picked from commit 9f27de170d)
This commit is contained in:
Ben Laurie
2013-01-28 17:34:33 +00:00
committed by Dr. Stephen Henson
parent 610dfc3ef4
commit b23da2919b
5 changed files with 68 additions and 58 deletions
Download Patch File Download Diff File Expand all files Collapse all files

4
ssl/t1_enc.c
View File

@@ -737,11 +737,7 @@ int tls1_enc(SSL *s, int send)
if (!send)
{
if (l == 0 || l%bs != 0)
{
SSLerr(SSL_F_TLS1_ENC,SSL_R_BLOCK_CIPHER_PAD_IS_WRONG);
ssl3_send_alert(s,SSL3_AL_FATAL,SSL_AD_DECRYPTION_FAILED);
return 0;
}
}
EVP_Cipher(ds,rec->data,rec->input,l);