Parse authz correctly.

aeda172a · Ben Laurie · 8d1b199d · aeda172a · aeda172a
隐藏空白更改
内联并排

Showing with 8 addition and 0 deletion

ssl/s3_srvr.c ssl/s3_srvr.c +4 -0

ssl/t1_lib.c ssl/t1_lib.c +4 -0

未找到文件。
--- a/ssl/s3_srvr.c
+++ b/ssl/s3_srvr.c
@@ -3676,6 +3676,8 @@ int tls1_send_server_supplemental_data(SSL *s)

 		type = *(authz++);
 		n2s(authz, len);
+		/* n2s increments authz by 2*/
+		i += 2;

 		if (memchr(s->s3->tlsext_authz_client_types,
 			   type,
@@ -3719,6 +3721,8 @@ int tls1_send_server_supplemental_data(SSL *s)

 		type = *(authz++);
 		n2s(authz, len);
+		/* n2s increments authz by 2 */
+		i += 2;

 		if (memchr(s->s3->tlsext_authz_client_types,
 			   type,

--- a/ssl/t1_lib.c
+++ b/ssl/t1_lib.c
@@ -1234,6 +1234,8 @@ unsigned char *ssl_add_serverhello_tlsext(SSL *s, unsigned char *p, unsigned cha
 				authz_count++;

 			n2s(authz, length);
+			/* n2s increments authz by 2 */
+			i += 2;
 			authz += length;
 			i += length;
 			}
@@ -1267,6 +1269,8 @@ unsigned char *ssl_add_serverhello_tlsext(SSL *s, unsigned char *p, unsigned cha
 				   s->s3->tlsext_authz_client_types_len) != NULL)
 				*(ret++) = type;
 			n2s(authz, length);
+			/* n2s increments authz by 2 */
+			i += 2;
 			authz += length;
 			i += length;
 			}