[PR3597] Advance to the next state variant when reusing messages.
authorRichard Levitte <levitte@openssl.org>
Fri, 28 Nov 2014 19:40:10 +0000 (20:40 +0100)
committerRichard Levitte <levitte@openssl.org>
Fri, 28 Nov 2014 19:47:41 +0000 (20:47 +0100)
Previously, state variant was not advanced, which resulted in state
being stuck in the st1 variant (usually "_A").

This broke certificate callback retry logic when accepting connections
that were using SSLv2 ClientHello (hence reusing the message), because
their state never advanced to SSL3_ST_SR_CLNT_HELLO_C variant required
for the retry code path.

Reported by Yichun Zhang (agentzh).

Signed-off-by: Piotr Sikora <piotr@cloudflare.com>
Reviewed-by: Richard Levitte <levitte@openssl.org>
Reviewed-by: Matt Caswell <matt@openssl.org>
ssl/s3_both.c

index beef06f96b9f377c13150ecdcebe4d29de41c29c..b110e3c361021c44008d09e2299c6e6e33f069b9 100644 (file)
@@ -358,6 +358,7 @@ long ssl3_get_message(SSL *s, int st1, int stn, int mt, long max, int *ok)
                        goto f_err;
                        }
                *ok=1;
+               s->state = stn;
                s->init_msg = s->init_buf->data + 4;
                s->init_num = (int)s->s3->tmp.message_size;
                return s->init_num;