Merge branch 'bugfix/fix_dynamic_mbedtls_crash_v5.2' into 'release/v5.2'

mbedtls: Fix enable dynamic mbedtls will occur heap corruption when server support TLS renegotiation(backport v5.2) See merge request espressif/esp-idf!28326
2024-10-05 20:47:46 -04:00 · 2024-01-19 11:42:35 +08:00 · 2024-01-19 11:42:35 +08:00 · 35e025f8e3
commit 35e025f8e3
parent 9699f27723 5a234cf642
1 changed files with 5 additions and 0 deletions
--- a/components/mbedtls/port/dynamic/esp_ssl_cli.c
+++ b/components/mbedtls/port/dynamic/esp_ssl_cli.c
@ -185,6 +185,11 @@ static int manage_resource(mbedtls_ssl_context *ssl, bool add)
        case MBEDTLS_SSL_FLUSH_BUFFERS:
            break;
        case MBEDTLS_SSL_HANDSHAKE_WRAPUP:
+#if defined(MBEDTLS_SSL_RENEGOTIATION)
+            if (add && ssl->MBEDTLS_PRIVATE(renego_status)) {
+                CHECK_OK(esp_mbedtls_add_rx_buffer(ssl));
+            }
+#endif
            break;
        default:
            break;