Fix dtls_query_mtu so that it will always either complete with an mtu that is
authorMatt Caswell <matt@openssl.org>
Mon, 1 Dec 2014 22:18:18 +0000 (22:18 +0000)
committerMatt Caswell <matt@openssl.org>
Wed, 3 Dec 2014 09:24:20 +0000 (09:24 +0000)
commit1620a2e49c777f31f2ce57966ae74006b48ad759
treee4a1ed4c4f49d638b48b854a3bcec0edfbca4e3e
parent59669b6abf620d1ed2ef4d1e2df25c998b89b64d
Fix dtls_query_mtu so that it will always either complete with an mtu that is
at least the minimum or it will fail.
There were some instances in dtls1_query_mtu where the final mtu can end up
being less than the minimum, i.e. where the user has set an mtu manually. This
shouldn't be allowed. Also remove dtls1_guess_mtu that, despite having
logic for guessing an mtu, was actually only ever used to work out the minimum
mtu to use.

Reviewed-by: Tim Hudson <tjh@openssl.org>
ssl/d1_both.c