Fix bug in SSL ticket implementation removing keys of age < 1s Fixes #1968.

commit: 6c794faa46c7577228794c44c71b0fed3c42842a [log] [tgz]
author: Hanno Becker <hanno.becker@arm.com> Tue Aug 21 13:55:31 2018 +0100
committer: Hanno Becker <hanno.becker@arm.com> Wed Aug 22 14:58:31 2018 +0100
tree: 1b6d4cfb091c31ff4e0cc384e39c6e02ad45646e
parent: e4d14208aa3bd6573514dfbea3ac3181f1bb8ad0 [diff] [blame]
diff --git a/library/ssl_ticket.c b/library/ssl_ticket.c
index 4d9116d..ad2d526 100644
--- a/library/ssl_ticket.c
+++ b/library/ssl_ticket.c

@@ -101,7 +101,7 @@
         uint32_t current_time = (uint32_t) mbedtls_time( NULL );
         uint32_t key_time = ctx->keys[ctx->active].generation_time;
 
-        if( current_time > key_time &&
+        if( current_time >= key_time &&
             current_time - key_time < ctx->ticket_lifetime )
         {
             return( 0 );
commit	6c794faa46c7577228794c44c71b0fed3c42842a	[log] [tgz]
author	Hanno Becker <hanno.becker@arm.com>	Tue Aug 21 13:55:31 2018 +0100
committer	Hanno Becker <hanno.becker@arm.com>	Wed Aug 22 14:58:31 2018 +0100
tree	1b6d4cfb091c31ff4e0cc384e39c6e02ad45646e
parent	e4d14208aa3bd6573514dfbea3ac3181f1bb8ad0 [diff] [blame]