Comment on hardcoding of maximum HKDF key expansion of 255 Bytes Signed-off-by: Hanno Becker <hanno.becker@arm.com>

commit: 531fe3054ce4bf685a45cfd82e0bd695cb9f5903 [log] [tgz]
author: Hanno Becker <hanno.becker@arm.com> Wed Sep 16 09:45:27 2020 +0100
committer: Hanno Becker <hanno.becker@arm.com> Wed Sep 16 09:50:17 2020 +0100
tree: d1a837f57f71fd38e72da26f5a15f6270bf63c58
parent: 61baae7c9fbf62fd8d5b80bf0835a69ddad11040 [diff] [blame]
diff --git a/library/ssl_tls13_keys.c b/library/ssl_tls13_keys.c
index d641b16..c39e032 100644
--- a/library/ssl_tls13_keys.c
+++ b/library/ssl_tls13_keys.c

@@ -103,7 +103,14 @@
 
     unsigned char *p = dst;
 
-    /* Add total length. */
+    /* Add the size of the expanded key material.
+     * We're hardcoding the high byte to 0 here assuming that we never use
+     * TLS 1.3 HKDF key expansion to more than 255 Bytes. */
+#if MBEDTLS_SSL_TLS1_3_KEY_SCHEDULE_MAX_EXPANSION_LEN > 255
+#error "The implementation of ssl_tls1_3_hkdf_encode_label() is not fit for the \
+        value of MBEDTLS_SSL_TLS1_3_KEY_SCHEDULE_MAX_EXPANSION_LEN"
+#endif
+
     *p++ = 0;
     *p++ = (unsigned char)( ( desired_length >> 0 ) & 0xFF );
commit	531fe3054ce4bf685a45cfd82e0bd695cb9f5903	[log] [tgz]
author	Hanno Becker <hanno.becker@arm.com>	Wed Sep 16 09:45:27 2020 +0100
committer	Hanno Becker <hanno.becker@arm.com>	Wed Sep 16 09:50:17 2020 +0100
tree	d1a837f57f71fd38e72da26f5a15f6270bf63c58
parent	61baae7c9fbf62fd8d5b80bf0835a69ddad11040 [diff] [blame]