Fix FALLBACK_SCSV parsing Fixed a bug in ssl_srv.c when parsing TLS_FALLBACK_SCSV in the ciphersuite list that caused it to miss it sometimes. Reported by Hugo Leisink as issue #810. Fix initially by @andreasag01; this commit isolates the bug fix and adds a non-regression test.

commit: d50177fdf379a828c5daccf0385ab84cafeabc80 [log] [tgz]
author: Gilles Peskine <Gilles.Peskine@arm.com> Tue May 16 17:53:03 2017 +0200
committer: Gilles Peskine <Gilles.Peskine@arm.com> Tue May 16 17:53:03 2017 +0200
tree: 2e20b06e3b13b59fe26e12e5eaad7c8bcaad23eb
parent: b65c2be5f174468a178b6d9456b20ca969d4a3d6 [diff] [blame]
diff --git a/library/ssl_srv.c b/library/ssl_srv.c
index fc0d2d7..8a264aa 100644
--- a/library/ssl_srv.c
+++ b/library/ssl_srv.c

@@ -1700,7 +1700,7 @@
 #endif
 
 #if defined(MBEDTLS_SSL_FALLBACK_SCSV)
-    for( i = 0, p = buf + 41 + sess_len; i < ciph_len; i += 2, p += 2 )
+    for( i = 0, p = buf + ciph_offset + 2; i < ciph_len; i += 2, p += 2 )
     {
         if( p[0] == (unsigned char)( ( MBEDTLS_SSL_FALLBACK_SCSV_VALUE >> 8 ) & 0xff ) &&
             p[1] == (unsigned char)( ( MBEDTLS_SSL_FALLBACK_SCSV_VALUE      ) & 0xff ) )
commit	d50177fdf379a828c5daccf0385ab84cafeabc80	[log] [tgz]
author	Gilles Peskine <Gilles.Peskine@arm.com>	Tue May 16 17:53:03 2017 +0200
committer	Gilles Peskine <Gilles.Peskine@arm.com>	Tue May 16 17:53:03 2017 +0200
tree	2e20b06e3b13b59fe26e12e5eaad7c8bcaad23eb
parent	b65c2be5f174468a178b6d9456b20ca969d4a3d6 [diff] [blame]