git.ipfire.org Git - thirdparty/hostap.git/commit

author	Jouni Malinen <j@w1.fi>
	Sun, 7 Oct 2012 17:18:10 +0000 (20:18 +0300)
committer	Jouni Malinen <j@w1.fi>
	Sun, 7 Oct 2012 17:18:10 +0000 (20:18 +0300)
commit	458cb3019108b6cb8c0c1cab94ae6ebf244eda27
tree	96f0968ea01fe0b2375f2bc2c50ca18cc572c7f8	tree \| snapshot
parent	586c446e0ff42ae00315b014924ec669023bd8de	commit \| diff

EAP-TLS: Add extra validation for TLS Message Length

While the existing code already addresses TLS Message Length validation
for both EAP-TLS peer and server side, this adds explicit checks and
rejection of invalid messages in the functions handling reassembly. This
does not change externally observable behavior in case of EAP server.
For EAP peer, this starts rejecting invalid messages instead of
addressing them by reallocating the buffer (i.e., ignoring TLS Message
Length in practice).

Signed-hostap: Jouni Malinen <j@w1.fi>

src/eap_peer/eap_tls_common.c		diff \| blob \| blame \| history
src/eap_server/eap_server_tls_common.c		diff \| blob \| blame \| history