From 77e257e95845bbce217b58fff0c8283f06d6b20c Mon Sep 17 00:00:00 2001
From: Paul Bakker <p.j.bakker@polarssl.org>
Date: Mon, 16 Dec 2013 15:29:52 +0100
Subject: [PATCH] Fixed bad check for maximum size of fragment length index

---
 library/ssl_tls.c | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/library/ssl_tls.c b/library/ssl_tls.c
index c2f560335..e9299d279 100644
--- a/library/ssl_tls.c
+++ b/library/ssl_tls.c
@@ -3824,7 +3824,7 @@ void ssl_set_min_version( ssl_context *ssl, int major, int minor )
 #if defined(POLARSSL_SSL_MAX_FRAGMENT_LENGTH)
 int ssl_set_max_frag_len( ssl_context *ssl, unsigned char mfl_code )
 {
-    if( mfl_code >= sizeof( mfl_code_to_length ) ||
+    if( mfl_code >= SSL_MAX_FRAG_LEN_INVALID ||
         mfl_code_to_length[mfl_code] > SSL_MAX_CONTENT_LEN )
     {
         return( POLARSSL_ERR_SSL_BAD_INPUT_DATA );