wolfSSL/wolfssl
1
0
Fork 1
mirror of https://github.com/wolfSSL/wolfssl.git synced 2026-01-27 07:42:19 +01:00
Code Issues Packages Projects Releases Wiki Activity

early_data: avoid resetting ssl->earlyData after WANT_WRITE retry

Browse Source
This commit is contained in:
Marco Oliverio
2025-12-02 17:58:23 +01:00
parent a1c8790039
commit 093d77727b
1 changed files with 18 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

19
src/tls13.c
View File

@@ -15066,7 +15066,10 @@ int wolfSSL_read_early_data(WOLFSSL* ssl, void* data, int sz, int* outSz)
return SIDE_ERROR;
if (ssl->options.handShakeState == NULL_STATE) {
if (ssl->error != WC_NO_ERR_TRACE(WC_PENDING_E))
/* the server flight can return WANT_WRITE and we re-enter here after
* setting ssl->earlyData = process_early_data, set earlyData to
* expecting_early_data just once */
if (ssl->earlyData < expecting_early_data)
ssl->earlyData = expecting_early_data;
/* this used to be: ret = wolfSSL_accept_TLSv13(ssl);
* However, wolfSSL_accept_TLSv13() expects a certificate to
@@ -15098,6 +15101,20 @@ int wolfSSL_read_early_data(WOLFSSL* ssl, void* data, int sz, int* outSz)
#endif /* WOLFSSL_DTLS13 */
}
}
#ifdef WOLFSSL_DTLS13
else if (ssl->buffers.outputBuffer.length > 0 &&
ssl->options.dtls && ssl->dtls13SendingAckOrRtx) {
ret = SendBuffered(ssl);
if (ret == 0) {
ssl->dtls13SendingAckOrRtx = 0;
}
else {
ssl->error = ret;
WOLFSSL_ERROR(ssl->error);
return WOLFSSL_FATAL_ERROR;
}
}
#endif /* WOLFSSL_DTLS13 */
else
ret = 0;
#else