Fix the wrong variable being used for TLS record size checks Fix an issue whereby a variable was used to check the size of incoming TLS records against the configured maximum prior to it being set to the right value. Signed-off-by: Paul Elliott <paul.elliott@arm.com>

commit: 24ed2caaffae614cd9a79737532ec5ee942dd239 [log] [tgz]
author: Paul Elliott <paul.elliott@arm.com> Fri Jun 10 14:11:31 2022 +0100
committer: Paul Elliott <paul.elliott@arm.com> Thu Jun 30 12:37:15 2022 +0100
tree: 4935bd51052d7cd9e7f9c9ae380645c246bda1de
parent: 492ece7b54eb7b82ca15d837a13db3f90110263c [diff] [blame]
diff --git a/library/ssl_msg.c b/library/ssl_msg.c
index 217859c..e47c538 100644
--- a/library/ssl_msg.c
+++ b/library/ssl_msg.c

@@ -3908,7 +3908,7 @@
 
     /* Check actual (decrypted) record content length against
      * configured maximum. */
-    if( ssl->in_msglen > MBEDTLS_SSL_IN_CONTENT_LEN )
+    if( rec->data_len > MBEDTLS_SSL_IN_CONTENT_LEN )
     {
         MBEDTLS_SSL_DEBUG_MSG( 1, ( "bad message length" ) );
         return( MBEDTLS_ERR_SSL_INVALID_RECORD );
commit	24ed2caaffae614cd9a79737532ec5ee942dd239	[log] [tgz]
author	Paul Elliott <paul.elliott@arm.com>	Fri Jun 10 14:11:31 2022 +0100
committer	Paul Elliott <paul.elliott@arm.com>	Thu Jun 30 12:37:15 2022 +0100
tree	4935bd51052d7cd9e7f9c9ae380645c246bda1de
parent	492ece7b54eb7b82ca15d837a13db3f90110263c [diff] [blame]