nts: ignore long non-critical records
In the NTS-KE client don't reject the response if it has non-critical
records that are too long for the processing buffer. This is not
expected to happen with the current specification, but it might be
needed with future extensions.
Fixes: 7925ed39b8 ("nts: fix handling of long server negotiation record")
This commit is contained in:
Miroslav Lichvar
parent
8c1e16711d
commit
0493abb68a
1 changed files with 4 additions and 3 deletions
|
|
@ -143,9 +143,10 @@ process_response(NKC_Instance inst)
|
|||
break;
|
||||
|
||||
if (length > sizeof (data)) {
|
||||
DEBUG_LOG("Record too long type=%d length=%d", type, length);
|
||||
DEBUG_LOG("Record too long type=%d length=%d critical=%d", type, length, critical);
|
||||
if (critical)
|
||||
error = 1;
|
||||
break;
|
||||
continue;
|
||||
}
|
||||
|
||||
switch (type) {
|
||||
|
|
|
|||
Loading…
Reference in a new issue