diff options
| -rw-r--r-- | src/lib/libssl/tls13_legacy.c | 6 |
1 files changed, 4 insertions, 2 deletions
diff --git a/src/lib/libssl/tls13_legacy.c b/src/lib/libssl/tls13_legacy.c index e54db03e3c..7327311c7b 100644 --- a/src/lib/libssl/tls13_legacy.c +++ b/src/lib/libssl/tls13_legacy.c | |||
| @@ -1,4 +1,4 @@ | |||
| 1 | /* $OpenBSD: tls13_legacy.c,v 1.33 2021/12/16 06:32:56 tb Exp $ */ | 1 | /* $OpenBSD: tls13_legacy.c,v 1.34 2022/01/25 14:51:54 tb Exp $ */ |
| 2 | /* | 2 | /* |
| 3 | * Copyright (c) 2018, 2019 Joel Sing <jsing@openbsd.org> | 3 | * Copyright (c) 2018, 2019 Joel Sing <jsing@openbsd.org> |
| 4 | * | 4 | * |
| @@ -507,7 +507,7 @@ tls13_legacy_shutdown(SSL *ssl) | |||
| 507 | } else if (!ctx->close_notify_recv) { | 507 | } else if (!ctx->close_notify_recv) { |
| 508 | /* | 508 | /* |
| 509 | * If there is no application data pending, attempt to read more | 509 | * If there is no application data pending, attempt to read more |
| 510 | * data in order to receive a close notify. This should trigger | 510 | * data in order to receive a close-notify. This should trigger |
| 511 | * a record to be read from the wire, which may be application | 511 | * a record to be read from the wire, which may be application |
| 512 | * handshake or alert data. Only one attempt is made to match | 512 | * handshake or alert data. Only one attempt is made to match |
| 513 | * previous semantics. | 513 | * previous semantics. |
| @@ -516,6 +516,8 @@ tls13_legacy_shutdown(SSL *ssl) | |||
| 516 | if ((ret = tls13_read_application_data(ctx->rl, buf, | 516 | if ((ret = tls13_read_application_data(ctx->rl, buf, |
| 517 | sizeof(buf))) < 0) | 517 | sizeof(buf))) < 0) |
| 518 | return tls13_legacy_return_code(ssl, ret); | 518 | return tls13_legacy_return_code(ssl, ret); |
| 519 | if (!ctx->close_notify_recv) | ||
| 520 | return -1; | ||
| 519 | } | 521 | } |
| 520 | } | 522 | } |
| 521 | 523 | ||