Don't allocate space for DTLS header if DTLS is disabled

commit: d25d44413453bd72e00171812b79905e123c6c1d [log] [tgz]
author: Hanno Becker <hanno.becker@arm.com> Wed Oct 04 13:56:42 2017 +0100
committer: Hanno Becker <hanno.becker@arm.com> Wed Oct 04 13:58:03 2017 +0100
tree: 32446e1db97f3e756e4048272bfaafff4ec69041
parent: 184f6752566bcae1e6dcdfa8408b9f859d7a5111 [diff] [blame]
diff --git a/include/mbedtls/ssl_internal.h b/include/mbedtls/ssl_internal.h
index 916817a..3ce4945 100644
--- a/include/mbedtls/ssl_internal.h
+++ b/include/mbedtls/ssl_internal.h

@@ -158,11 +158,17 @@
 #error Bad configuration - protected record payload too large.
 #endif
 
-#define MBEDTLS_SSL_BUFFER_LEN  ( MBEDTLS_SSL_PAYLOAD_LEN        \
-                        + 5 /* TLS record header      */         \
-                        + 8 /* Additional DTLS fields */         \
-                        )
+#if !defined(MBEDTLS_SSL_PROTO_DTLS)
+/* https://tools.ietf.org/html/rfc5246#section-6.2 */
+#define MBEDTLS_SSL_HEADER_LEN 5
+#else
+/* https://tools.ietf.org/html/rfc6347#section-4.1  */
+/* 8 additional bytes for epoch and sequence number */
+#define MBEDTLS_SSL_HEADER_LEN 13
+#endif
 
+#define MBEDTLS_SSL_BUFFER_LEN  \
+    ( ( MBEDTLS_SSL_HEADER_LEN ) + ( MBEDTLS_SSL_PAYLOAD_LEN ) )
 
 /*
  * TLS extension flags (for extensions with outgoing ServerHello content
commit	d25d44413453bd72e00171812b79905e123c6c1d	[log] [tgz]
author	Hanno Becker <hanno.becker@arm.com>	Wed Oct 04 13:56:42 2017 +0100
committer	Hanno Becker <hanno.becker@arm.com>	Wed Oct 04 13:58:03 2017 +0100
tree	32446e1db97f3e756e4048272bfaafff4ec69041
parent	184f6752566bcae1e6dcdfa8408b9f859d7a5111 [diff] [blame]