From 9220fee17b75f0389ef82151bac09b1b58055785 Mon Sep 17 00:00:00 2001 From: Gilles Peskine Date: Wed, 13 Apr 2022 14:20:19 +0200 Subject: [PATCH] Enable DTLS_BADMAC_LIMIT I originally missed this when backporting because the option was removed (and changed to always-on) in 3.0. Signed-off-by: Gilles Peskine --- configs/config-ccm-psk-dtls1_2.h | 1 + 1 file changed, 1 insertion(+) diff --git a/configs/config-ccm-psk-dtls1_2.h b/configs/config-ccm-psk-dtls1_2.h index 982bc2ce2e..78b75c860b 100644 --- a/configs/config-ccm-psk-dtls1_2.h +++ b/configs/config-ccm-psk-dtls1_2.h @@ -61,6 +61,7 @@ #define MBEDTLS_SSL_PROTO_TLS1_2 #define MBEDTLS_SSL_PROTO_DTLS #define MBEDTLS_SSL_DTLS_ANTI_REPLAY +#define MBEDTLS_SSL_DTLS_BADMAC_LIMIT #define MBEDTLS_SSL_DTLS_CLIENT_PORT_REUSE #define MBEDTLS_SSL_DTLS_CONNECTION_ID #define MBEDTLS_SSL_DTLS_HELLO_VERIFY