Ensure the al variable is properly ininitialised in all code paths

author Matt Caswell <matt@openssl.org>

Fri, 20 Jan 2017 13:53:38 +0000 (13:53 +0000)

committer Matt Caswell <matt@openssl.org>

Mon, 30 Jan 2017 10:18:23 +0000 (10:18 +0000)
author Matt Caswell <matt@openssl.org>
Fri, 20 Jan 2017 13:53:38 +0000 (13:53 +0000)
committer Matt Caswell <matt@openssl.org>
Mon, 30 Jan 2017 10:18:23 +0000 (10:18 +0000)
diff --git a/ssl/statem/statem_clnt.c b/ssl/statem/statem_clnt.c

index cd871940ee871c9c9846e25f455ef8959c2c9d02..53e16f87ef5656b16a77dae229213042eb9fd8f0 100644 (file)
--- a/ssl/statem/statem_clnt.c
+++ b/ssl/statem/statem_clnt.c
@@ -2210,7 +2210,7 @@ static int ca_dn_cmp(const X509_NAME *const *a, const X509_NAME *const *b)
  
  MSG_PROCESS_RETURN tls_process_new_session_ticket(SSL *s, PACKET *pkt)
  {
-    int al;
+    int al = SSL_AD_DECODE_ERROR;
      unsigned int ticklen;
      unsigned long ticket_lifetime_hint, age_add = 0;
      unsigned int sess_len;
@@ -2222,7 +2222,6 @@ MSG_PROCESS_RETURN tls_process_new_session_ticket(SSL *s, PACKET *pkt)
          || (!SSL_IS_TLS13(s) && PACKET_remaining(pkt) != ticklen)
          || (SSL_IS_TLS13(s) && (ticklen == 0
                                  || PACKET_remaining(pkt) < ticklen))) {
-        al = SSL_AD_DECODE_ERROR;
          SSLerr(SSL_F_TLS_PROCESS_NEW_SESSION_TICKET, SSL_R_LENGTH_MISMATCH);
          goto f_err;
      }
author	Matt Caswell <matt@openssl.org>
	Fri, 20 Jan 2017 13:53:38 +0000 (13:53 +0000)
committer	Matt Caswell <matt@openssl.org>
	Mon, 30 Jan 2017 10:18:23 +0000 (10:18 +0000)