Commit 5fe37157 authored by Matt Caswell's avatar Matt Caswell
Browse files

Flush server side unauthenticated writes 



When a server call SSL_write_early_data() to write to an unauthenticated
client the buffering BIO is still in place, so we should ensure we flush
the write.

Reviewed-by: default avatarViktor Dukhovni <viktor@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/6198)
parent e8251092

ssl/ssl_lib.c

+3 −0
Original line number Diff line number Diff line
@@ -2023,6 +2023,9 @@ int SSL_write_early_data(SSL *s, const void *buf, size_t num, size_t *written) 
        /* We are a server writing to an unauthenticated client */

        s->early_data_state = SSL_EARLY_DATA_UNAUTH_WRITING;

        ret = SSL_write_ex(s, buf, num, written);

        /* The buffering BIO is still in place */

        if (ret)

            (void)BIO_flush(s->wbio);

        s->early_data_state = early_data_state;

        return ret;