commit 9711920304f0bab506fc52ccc35b8059cce8d042
author Manuel Pégourié-Gonnard <mpg@elzevir.fr> Thu Oct 23 15:29:55 2014 +0200
committer Manuel Pégourié-Gonnard <mpg@elzevir.fr> Thu Oct 23 15:29:55 2014 +0200
tree 99d93f43ce673e2fa1e013040737c544dd22cb29
parent 3fdfcedebb222643935e06e6e4712c481c3282ac

Fix ssl_read wrt non-Application Data

library/ssl_tls.c

diff --git a/library/ssl_tls.c b/library/ssl_tls.c
index d8eddd9..18bad95 100644
--- a/library/ssl_tls.c
+++ b/library/ssl_tls.c
@@ -3930,11 +3930,20 @@
                     SSL_DEBUG_RET( 1, "ssl_renegotiate", ret );
                     return( ret );
                 }
-
-                return( POLARSSL_ERR_NET_WANT_READ );
             }
+
+            /* Tell the user to call ssl_read() again */
+            return( POLARSSL_ERR_NET_WANT_READ );
         }
-        else if( ssl->in_msgtype != SSL_MSG_APPLICATION_DATA )
+
+        /* Fatal and closure alerts handled by ssl_read_record() */
+        if( ssl->in_msgtype == SSL_MSG_ALERT )
+        {
+            SSL_DEBUG_MSG( 2, ( "ignoring non-fatal non-closure alert" ) );
+            return( POLARSSL_ERR_NET_WANT_READ );
+        }
+
+        if( ssl->in_msgtype != SSL_MSG_APPLICATION_DATA )
         {
             SSL_DEBUG_MSG( 1, ( "bad application data message" ) );
             return( POLARSSL_ERR_SSL_UNEXPECTED_MESSAGE );