Add replay detection in parse_client_hello()

commit: f03c7aa4690b90a43a20fc35f6d2ed382fc2cab7 [log] [tgz]
author: Manuel Pégourié-Gonnard <mpg@elzevir.fr> Wed Sep 24 14:54:06 2014 +0200
committer: Paul Bakker <p.j.bakker@polarssl.org> Tue Oct 21 16:32:35 2014 +0200
tree: 5db53e89d2c26572687ce957d1ee15578753de23
parent: 2739313cea0bfb897594a4d67c6299a053b10948 [diff] [blame]
diff --git a/library/ssl_srv.c b/library/ssl_srv.c
index a0bb653..ba46f5a 100644
--- a/library/ssl_srv.c
+++ b/library/ssl_srv.c

@@ -1164,6 +1164,9 @@
 
     SSL_DEBUG_MSG( 2, ( "=> parse client hello" ) );
 
+#if defined(POLARSSL_SSL_DTLS_ANTI_REPLAY)
+read_record_header:
+#endif
     /*
      * If renegotiating, then the input was read with ssl_read_record(),
      * otherwise read it ourselves manually in order to support SSLv2
@@ -1235,6 +1238,19 @@
         }
 
         memcpy( ssl->out_ctr + 2, ssl->in_ctr + 2, 6 );
+
+#if defined(POLARSSL_SSL_DTLS_ANTI_REPLAY)
+        if( ssl_dtls_replay_check( ssl ) != 0 )
+        {
+            SSL_DEBUG_MSG( 1, ( "replayed record, discarding" ) );
+            ssl->next_record_offset = 0;
+            ssl->in_left = 0;
+            goto read_record_header;
+        }
+
+        /* No MAC to check yet, so we can update right now */
+        ssl_dtls_replay_update( ssl );
+#endif
     }
 #endif /* POLARSSL_SSL_PROTO_DTLS */
commit	f03c7aa4690b90a43a20fc35f6d2ed382fc2cab7	[log] [tgz]
author	Manuel Pégourié-Gonnard <mpg@elzevir.fr>	Wed Sep 24 14:54:06 2014 +0200
committer	Paul Bakker <p.j.bakker@polarssl.org>	Tue Oct 21 16:32:35 2014 +0200
tree	5db53e89d2c26572687ce957d1ee15578753de23
parent	2739313cea0bfb897594a4d67c6299a053b10948 [diff] [blame]