From 8cc9c62911d60c2a1ca90b0b01d12d3ce707274d Mon Sep 17 00:00:00 2001
From: John Safranek <john@wolfssl.com>
Date: Thu, 13 Aug 2015 14:29:56 -0700
Subject: [PATCH] skip past the pad and mac when skipping a finished message in
 DTLS

---
 src/internal.c | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/src/internal.c b/src/internal.c
index bd04bdbec..25cbf17f0 100644
--- a/src/internal.c
+++ b/src/internal.c
@@ -5193,6 +5193,8 @@ static int DoDtlsHandShakeMsg(WOLFSSL* ssl, byte* input, word32* inOutIdx,
                                 ssl->keys.dtls_expected_peer_handshake_number) {
         /* Already saw this message and processed it. It can be ignored. */
         *inOutIdx += fragSz;
+        if(type == finished )
+            *inOutIdx += ssl->keys.padSz;
         ret = 0;
     }
     else if (fragSz < size) {