From: Lubom <lubomir.sedlar@gmail.com>
Date: Thu, 7 May 2015 13:20:31 +0000 (+0100)
Subject: Lost alert in DTLS
X-Git-Tag: OpenSSL_1_0_1n~48
X-Git-Url: https://granicus.if.org/sourcecode?a=commitdiff_plain;h=0a9f8e0621ba03d6cbd5691f997eedba2d8536f7;p=openssl

Lost alert in DTLS

If a client receives a bad hello request in DTLS then the alert is not
sent correctly.

RT#2801

Signed-off-by: Matt Caswell <matt@openssl.org>
Reviewed-by: Kurt Roeckx <kurt@openssl.org>
(cherry picked from commit 4dc1aa0436fdb8af50960db676b739c8ef81f38c)
---

diff --git a/ssl/d1_pkt.c b/ssl/d1_pkt.c
index 7b49a7dd7a..d659ed428e 100644
--- a/ssl/d1_pkt.c
+++ b/ssl/d1_pkt.c
@@ -1065,7 +1065,7 @@ int dtls1_read_bytes(SSL *s, int type, unsigned char *buf, int len, int peek)
             (s->d1->handshake_fragment[3] != 0)) {
             al = SSL_AD_DECODE_ERROR;
             SSLerr(SSL_F_DTLS1_READ_BYTES, SSL_R_BAD_HELLO_REQUEST);
-            goto err;
+            goto f_err;
         }
 
         /*