feedc0de/wolfssl
1
0
Fork 0
forked from wolfSSL/wolfssl
Code Pull Requests Activity

Merge pull request #5147 from rizlik/do_alert_reset

Browse Source 
internal.c:reset input/processReply state if exiting after DoAlert()
This commit is contained in:
Sean Parkinson
2022-05-19 09:36:44 +10:00
committed by GitHub
parent b53484be10 be172af3cd
commit cd41c8beaf
1 changed files with 9 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

10
src/internal.c
View File

@@ -17397,6 +17397,10 @@ int ProcessReplyEx(WOLFSSL* ssl, int allowSocketErr)
/* the record layer is here */ /* the record layer is here */
case runProcessingOneMessage: case runProcessingOneMessage:
/* can't process a message if we have no data. */
if (ssl->buffers.inputBuffer.idx
>= ssl->buffers.inputBuffer.length)
return BUFFER_ERROR;
#if defined(HAVE_ENCRYPT_THEN_MAC) && !defined(WOLFSSL_AEAD_ONLY) #if defined(HAVE_ENCRYPT_THEN_MAC) && !defined(WOLFSSL_AEAD_ONLY)
if (IsEncryptionOn(ssl, 0) && ssl->options.startedETMRead) { if (IsEncryptionOn(ssl, 0) && ssl->options.startedETMRead) {
@@ -17709,8 +17713,12 @@ int ProcessReplyEx(WOLFSSL* ssl, int allowSocketErr)
return ret; return ret;
/* catch warnings that are handled as errors */ /* catch warnings that are handled as errors */
if (type == close_notify) if (type == close_notify) {
ssl->buffers.inputBuffer.idx =
ssl->buffers.inputBuffer.length;
ssl->options.processReply = doProcessInit;
return ssl->error = ZERO_RETURN; return ssl->error = ZERO_RETURN;
}
if (type == decrypt_error) if (type == decrypt_error)
return FATAL_ERROR; return FATAL_ERROR;