Add maximum ticket lifetime check Also add comments for age cast Signed-off-by: Jerry Yu <jerry.h.yu@arm.com>

commit: 8e0174ac05e19a986508c65e70cc1bd6621f6ab2 [log] [tgz]
author: Jerry Yu <jerry.h.yu@arm.com> Fri Nov 10 13:58:16 2023 +0800
committer: Jerry Yu <jerry.h.yu@arm.com> Tue Nov 21 09:59:24 2023 +0800
tree: 116edde9a37808e0fedb5d481beadd19d7046b3e
parent: 472a69260bf868c329607b0e2bcf9c09d10a31e4 [diff] [blame]
diff --git a/library/ssl_tls13_client.c b/library/ssl_tls13_client.c
index e7a4aef..44814b9 100644
--- a/library/ssl_tls13_client.c
+++ b/library/ssl_tls13_client.c

@@ -2748,7 +2748,8 @@
     MBEDTLS_SSL_DEBUG_MSG(3,
                           ("ticket_lifetime: %u",
                            (unsigned int) session->ticket_lifetime));
-    if (session->ticket_lifetime > 604800) {
+    if (session->ticket_lifetime >
+        MBEDTLS_SSL_TLS1_3_MAX_ALLOWED_TICKET_LIFETIME) {
         MBEDTLS_SSL_DEBUG_MSG(3, ("ticket_lifetime exceeds 7 days."));
         return MBEDTLS_ERR_SSL_ILLEGAL_PARAMETER;
     }
commit	8e0174ac05e19a986508c65e70cc1bd6621f6ab2	[log] [tgz]
author	Jerry Yu <jerry.h.yu@arm.com>	Fri Nov 10 13:58:16 2023 +0800
committer	Jerry Yu <jerry.h.yu@arm.com>	Tue Nov 21 09:59:24 2023 +0800
tree	116edde9a37808e0fedb5d481beadd19d7046b3e
parent	472a69260bf868c329607b0e2bcf9c09d10a31e4 [diff] [blame]