From 69e6b775f8a02c3c4eb1e10284275cefefa7aeef Mon Sep 17 00:00:00 2001
From: Simon Rozman <simon@rozman.si>
Date: Wed, 17 Aug 2016 09:29:55 +0200
Subject: [PATCH] Hello requests are no longer included in the handshake
 hashing (as per RFC)

---
 lib/TLS/src/Method.cpp | 7 +++++--
 1 file changed, 5 insertions(+), 2 deletions(-)

diff --git a/lib/TLS/src/Method.cpp b/lib/TLS/src/Method.cpp
index 42c4f0c..fcfa35d 100644
--- a/lib/TLS/src/Method.cpp
+++ b/lib/TLS/src/Method.cpp
@@ -1087,10 +1087,13 @@ void eap::method_tls::process_handshake(_In_bytecount_(msg_size) const void *_ms
             m_handshake[type] = true;
         }
 
+        if (type != tls_handshake_type_hello_request) {
+            // Hash all but hello requests (https://tools.ietf.org/html/rfc5246#section-7.4.1.1).
+            hash_handshake(msg, rec_end - msg);
+        }
+
         msg = rec_end;
     }
-
-    hash_handshake(_msg, msg_size);
 }