Commit 11e1807b authored by Matt Caswell's avatar Matt Caswell
Browse files

Fix the max psk len for TLSv1.3 



If using an old style TLSv1.2 PSK callback then the maximum possible PSK
len is PSK_MAX_PSK_LEN (256) - not 64.

Fixes #7261

Reviewed-by: default avatarPaul Dale <paul.dale@oracle.com>
(Merged from https://github.com/openssl/openssl/pull/7267)

(cherry picked from commit f39a02c68abc8936db24499cb3cfcba206a2e7eb)
parent aff58ee3

ssl/ssl_locl.h

+1 −1
Original line number Diff line number Diff line
@@ -471,7 +471,7 @@ struct ssl_method_st { 
    long (*ssl_ctx_callback_ctrl) (SSL_CTX *s, int cb_id, void (*fp) (void));

};



# define TLS13_MAX_RESUMPTION_PSK_LENGTH      64

# define TLS13_MAX_RESUMPTION_PSK_LENGTH      PSK_MAX_PSK_LEN



/*-

 * Lets make this into an ASN.1 type structure as follows