wolfSSL / wolfssl

The wolfSSL library is a small, fast, portable implementation of TLS/SSL for embedded devices to the cloud. wolfSSL supports up to TLS 1.3 and DTLS 1.3!

https://www.wolfssl.com

GNU General Public License v2.0

2.37k stars 834 forks source link

Fix for TLS v1.2 session resumption with tickets where the server decides to do full handshake #8108

Closed dgarske closed 1 month ago

dgarske commented 1 month ago

Description

Fix for TLS v1.2 session resumption with tickets where the server decides to do a full handshake. The wrong sessionIDSz was being checked and should be the arrays one since it get set from the server_hello.

Fixes ZD 18822

Testing

Checklist

[ ] added tests
[ ] updated/added doxygen
[ ] updated appropriate READMEs
[ ] Updated manual and documentation

dgarske commented 1 month ago

Applied commit on top of https://github.com/wolfSSL/wolfssl/pull/8097. That also resolves an issue with the server_hello session id being populated when it should not. Resolves the 964: test_session_ticket_no_id issue.