faraphel/chrony
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

nts: ignore long non-critical records

Browse source 
In the NTS-KE client don't reject the response if it has non-critical
records that are too long for the processing buffer. This is not
expected to happen with the current specification, but it might be
needed with future extensions.

Fixes: 7925ed39b8 ("nts: fix handling of long server negotiation record")
This commit is contained in:
Miroslav Lichvar 2021-05-03 12:48:23 +02:00
parent 8c1e16711d
commit 0493abb68a
1 changed files with 4 additions and 3 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

7
nts_ke_client.c
View file

@ -143,9 +143,10 @@ process_response(NKC_Instance inst)
break; break;
if (length > sizeof (data)) { if (length > sizeof (data)) {
DEBUG_LOG("Record too long type=%d length=%d", type, length); DEBUG_LOG("Record too long type=%d length=%d critical=%d", type, length, critical);
error = 1; if (critical)
break; error = 1;
continue;
} }
switch (type) { switch (type) {