Ensure we are in accept state in DTLSv1_listen

Calling SSL_set_accept_state() after DTLSv1_listen() clears the state, so SSL_accept() no longer works. In 1.0.2 calling DTLSv1_listen() would set the accept state automatically. We should still do that. Fixes #1989 Reviewed-by: N Andy Polyakov <appro@openssl.org>

Ensure we are in accept state in DTLSv1_listen
Calling SSL_set_accept_state() after DTLSv1_listen() clears the state, so SSL_accept() no longer works. In 1.0.2 calling DTLSv1_listen() would set the accept state automatically. We should still do that. Fixes #1989 Reviewed-by: N Andy Polyakov <appro@openssl.org>
5bdcd362 · Matt Caswell · 8d1ebff4 · 5bdcd362
隐藏空白更改
内联并排

Showing with 5 addition and 0 deletion

ssl/d1_lib.c ssl/d1_lib.c +5 -0

未找到文件。
--- a/ssl/d1_lib.c
+++ b/ssl/d1_lib.c
@@ -432,6 +432,11 @@ int DTLSv1_listen(SSL *s, BIO_ADDR *client)
    BIO_ADDR *tmpclient = NULL;
    PACKET pkt, msgpkt, msgpayload, session, cookiepkt;
+    if (s->handshake_func == NULL) {
+        /* Not properly initialized yet */
+        SSL_set_accept_state(s);
+    }
    /* Ensure there is no state left over from a previous invocation */
    if (!SSL_clear(s))
        return -1;