Remove redundant minimum length check

Availability of sufficient incoming data should be checked when
it is needed, which is in mbedtls_ssl_fetch_input(), and this
function has the necessary bounds checks in place.
This commit is contained in:
Hanno Becker 2019-07-10 13:55:17 +01:00
parent 20016654c3
commit 4894873b92

View file

@ -5042,17 +5042,6 @@ static int ssl_parse_record_header( mbedtls_ssl_context *ssl )
}
#endif /* MBEDTLS_SSL_PROTO_DTLS */
/* Check length against bounds of the current transform and version */
if( ssl->transform_in != NULL )
{
if( ssl->in_msglen < ssl->transform_in->minlen )
{
MBEDTLS_SSL_DEBUG_MSG( 1, ( "bad message length" ) );
return( MBEDTLS_ERR_SSL_INVALID_RECORD );
}
}
return( 0 );
}