Check ClientHello boundary as per draft-19

author Matt Caswell <matt@openssl.org>

Thu, 9 Mar 2017 22:58:05 +0000 (22:58 +0000)

committer Matt Caswell <matt@openssl.org>

Thu, 16 Mar 2017 14:20:38 +0000 (14:20 +0000)
author Matt Caswell <matt@openssl.org>
Thu, 9 Mar 2017 22:58:05 +0000 (22:58 +0000)
committer Matt Caswell <matt@openssl.org>
Thu, 16 Mar 2017 14:20:38 +0000 (14:20 +0000)
diff --git a/ssl/statem/statem_srvr.c b/ssl/statem/statem_srvr.c

index 259be22106f155e67e99bdc644c65c0bfb9703bb..608bef22155f8e11477e208089a6435d64266c61 100644 (file)
--- a/ssl/statem/statem_srvr.c
+++ b/ssl/statem/statem_srvr.c
@@ -1534,6 +1534,14 @@ static int tls_early_post_process_client_hello(SSL *s, int *al)
          goto err;
      }
  
+    /* TLSv1.3 defines that a ClientHello must end on a record boundary */
+    if (SSL_IS_TLS13(s) && RECORD_LAYER_processed_read_pending(&s->rlayer)) {
+        *al = SSL_AD_UNEXPECTED_MESSAGE;
+        SSLerr(SSL_F_TLS_EARLY_POST_PROCESS_CLIENT_HELLO,
+               SSL_R_NOT_ON_RECORD_BOUNDARY);
+        goto err;
+    }
+
      if (SSL_IS_DTLS(s)) {
          /* Empty cookie was already handled above by returning early. */
          if (SSL_get_options(s) & SSL_OP_COOKIE_EXCHANGE) {
author	Matt Caswell <matt@openssl.org>
	Thu, 9 Mar 2017 22:58:05 +0000 (22:58 +0000)
committer	Matt Caswell <matt@openssl.org>
	Thu, 16 Mar 2017 14:20:38 +0000 (14:20 +0000)