commit 0ff76407d245166caea505cffa3273fbbae24067
author Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com> Thu Jul 11 09:56:30 2019 +0200
committer Jarno Lamsa <jarno.lamsa@arm.com> Fri Aug 23 13:11:31 2019 +0300
tree f5f7c2e4753ffc8b62281b0accd5a20af7e01b18
parent 00400c2bf645976a250622f9b01a41ff1391b966

Add usage checks in context_load()

library/ssl_tls.c

diff --git a/library/ssl_tls.c b/library/ssl_tls.c
index cfd5cc8..d555c5a 100644
--- a/library/ssl_tls.c
+++ b/library/ssl_tls.c
@@ -11370,8 +11370,36 @@
                               const unsigned char *buf,
                               size_t len )
 {
+    /*
+     * The context should have been freshly setup or reset.
+     * Give the user an error in case of obvious misuse.
+     * (Checking session is useful because if won't be NULL if we're
+     * renegotiating, or if the user mistakenly loaded a session first.)
+     */
+    if( ssl->state != MBEDTLS_SSL_HELLO_REQUEST ||
+        ssl->session != NULL )
+    {
+        return( MBEDTLS_ERR_SSL_BAD_INPUT_DATA );
+    }
+
+    /*
+     * We can't check that the config matches the initial one, but we can at
+     * least check it matches the requirements for serializing.
+     */
+    if( ssl->conf->transport != MBEDTLS_SSL_TRANSPORT_DATAGRAM ||
+        ssl->conf->max_major_ver < MBEDTLS_SSL_MAJOR_VERSION_3 ||
+        ssl->conf->min_major_ver > MBEDTLS_SSL_MAJOR_VERSION_3 ||
+        ssl->conf->max_minor_ver < MBEDTLS_SSL_MINOR_VERSION_3 ||
+        ssl->conf->min_minor_ver > MBEDTLS_SSL_MINOR_VERSION_3 ||
+#if defined(MBEDTLS_SSL_RENEGOTIATION)
+        ssl->conf->disable_renegotiation != MBEDTLS_SSL_RENEGOTIATION_DISABLED
+#endif
+        )
+    {
+        return( MBEDTLS_ERR_SSL_BAD_INPUT_DATA );
+    }
+
     /* Unimplemented */
-    (void) ssl;
     (void) buf;
     (void) len;