From 9792ceb010ad6377f4e016b43301244289ddf2f1 Mon Sep 17 00:00:00 2001
From: tedu <>
Date: Sat, 21 Jun 2014 20:27:25 +0000
Subject: always compare memcmp against 0, for clarity.

---
 src/lib/libssl/s3_clnt.c | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

(limited to 'src/lib/libssl/s3_clnt.c')

diff --git a/src/lib/libssl/s3_clnt.c b/src/lib/libssl/s3_clnt.c
index 7257ba566d..0350019078 100644
--- a/src/lib/libssl/s3_clnt.c
+++ b/src/lib/libssl/s3_clnt.c
@@ -1,4 +1,4 @@
-/* $OpenBSD: s3_clnt.c,v 1.71 2014/06/19 21:29:51 tedu Exp $ */
+/* $OpenBSD: s3_clnt.c,v 1.72 2014/06/21 20:27:25 tedu Exp $ */
 /* Copyright (C) 1995-1998 Eric Young (eay@cryptsoft.com)
  * All rights reserved.
  *
@@ -886,7 +886,7 @@ ssl3_get_server_hello(SSL *s)
 	    timingsafe_memcmp(p, s->session->session_id, j) == 0) {
 		if (s->sid_ctx_length != s->session->sid_ctx_length ||
 		    timingsafe_memcmp(s->session->sid_ctx,
-		    s->sid_ctx, s->sid_ctx_length)) {
+		    s->sid_ctx, s->sid_ctx_length) != 0) {
 			/* actually a client application bug */
 			al = SSL_AD_ILLEGAL_PARAMETER;
 			SSLerr(SSL_F_SSL3_GET_SERVER_HELLO,
-- 
cgit v1.2.3-55-g6feb