Fix a bug caused by the return value being set early to signal successful - openbsd - A mirror of https://github.com/libressl/openbsd.git

diff options

author	jsing <>	2017-04-29 23:38:49 +0000
committer	jsing <>	2017-04-29 23:38:49 +0000
commit	4541d0e1983fb22c8b7e4b187edd1909fa53e7de (patch)
tree	cdb53bbcb885a011724e5972224f952b02be87c1 /src/lib/libcrypto/malloc-wrapper.c
parent	61198dce4d3f6c83534a2d04eb35e4228fa933df (diff)
download	openbsd-4541d0e1983fb22c8b7e4b187edd1909fa53e7de.tar.gz openbsd-4541d0e1983fb22c8b7e4b187edd1909fa53e7de.tar.bz2 openbsd-4541d0e1983fb22c8b7e4b187edd1909fa53e7de.zip

Fix a bug caused by the return value being set early to signal successful

DTLS cookie validation. This can mask a later failure and result in a positive return value being returned from ssl3_get_client_hello(), when it should return a negative value to propagate the error. Ironically this was introduced in OpenSSL 2e9802b7a7b with the commit message "Fix DTLS cookie management bugs". Fix based on OpenSSL. Issue reported by Nicolas Bouliane <nbouliane at jive dot com>. ok beck@

Diffstat (limited to 'src/lib/libcrypto/malloc-wrapper.c')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: