commit d5aeab1e8abfe48a8b277952fd52f18e8958d70e
author Hanno Becker <hanno.becker@arm.com> Mon May 20 14:50:53 2019 +0100
committer Hanno Becker <hanno.becker@arm.com> Mon Jun 03 14:47:36 2019 +0100
tree 290a839c5409eaadfcc7cf5842fe114d5c3eaf8b
parent fe6bb8ccc214993289999614acfebb0d2e6f65b2

Improve documentation of ssl_extract_add_data_from_record()

library/ssl_tls.c

diff --git a/library/ssl_tls.c b/library/ssl_tls.c
index 53055c2..187c28a 100644
--- a/library/ssl_tls.c
+++ b/library/ssl_tls.c
@@ -2049,22 +2049,25 @@
 }
 #endif /* MBEDTLS_SSL_CID */
 
-/* add_data must have size ( 13 + MBEDTLS_SSL_CID_LEN_MAX ) Bytes */
+/* `add_data` must have size 13 Bytes if the CID extension is disabled,
+ * and 13 + CID-length Bytes if the CID extension is enabled. */
 static void ssl_extract_add_data_from_record( unsigned char* add_data,
                                               size_t *add_data_len,
                                               mbedtls_record *rec )
 {
-    /* Quoting RFC 5246:
+    /* Quoting RFC 5246 (TLS 1.2):
      *
      *    additional_data = seq_num + TLSCompressed.type +
      *                      TLSCompressed.version + TLSCompressed.length;
      *
-     * For the CID extension, this is extended as follows:
+     * For the CID extension, this is extended as follows
+     * (quoting draft-ietf-tls-dtls-connection-id-05,
+     *  https://tools.ietf.org/html/draft-ietf-tls-dtls-connection-id-05):
      *
      *       additional_data = seq_num + DTLSPlaintext.type +
      *                         DTLSPlaintext.version +
-     *                         cid +                   // New input
-     *                         cid_length +            // New input
+     *                         cid +
+     *                         cid_length +
      *                         length_of_DTLSInnerPlaintext;
      */