Revision 41d049e1cda0e23ad45fbca94fc90cfe9cfee466 authored by Matt Caswell on 30 November 2015, 10:38:54 UTC, committed by Matt Caswell on 30 November 2015, 10:51:43 UTC
In the DTLS ClientHello processing the return value is stored in |ret| which
by default is -1. We wish to return 1 on success or 2 on success *and* we
have validated the DTLS cookie. Previously on successful validation of the
cookie we were setting |ret| to 2. Unfortunately if we later encounter an
error then we can end up returning a successful (positive) return code from
the function because we already set |ret| to a positive value.

This does not appear to have a security consequence because the handshake
just fails at a later point.

Reviewed-by: Andy Polyakov <appro@openssl.org>
1 parent 98b9454
History
File Mode Size
Makefile -rw-r--r-- 1.2 KB
c89.sh -rwxr-xr-x 211 bytes
c_hash -rw-r--r-- 119 bytes
c_info -rw-r--r-- 152 bytes
c_issuer -rw-r--r-- 112 bytes
c_name -rw-r--r-- 110 bytes
c_rehash.in -rw-r--r-- 4.1 KB

back to top