Check DTLS_BAD_VER for version number.

Need to check DTLS_BAD_VER as well as DTLS1_VERSION. PR:2984 (cherry picked from commit 6a14feb048c0b7ad4da341fca364171e273da325)
2013-02-12 15:09:44 +00:00 · 2013-02-12 15:09:44 +00:00 · a8655eb21a
commit a8655eb21a
parent f751dc4759
1 changed files with 1 additions and 1 deletions
--- a/ssl/s3_cbc.c
+++ b/ssl/s3_cbc.c
@ -148,7 +148,7 @@ int tls1_cbc_remove_padding(const SSL* s,
 	unsigned padding_length, good, to_check, i;
 	const unsigned overhead = 1 /* padding length byte */ + mac_size;
 	/* Check if version requires explicit IV */
-	if (s->version == DTLS1_VERSION)
+	if (s->version == DTLS1_VERSION || s->version == DTLS1_BAD_VER)
 		{
 		/* These lengths are all public so we can test them in
 		 * non-constant time.