Give more information in the SSL_stateless return code

Allow users to distinguish between an error occurring and an HRR being issued. Fixes #5549 Reviewed-by: Rich Salz <rsalz@openssl.org> (Merged from https://github.com/openssl/openssl/pull/5562)
author: Matt Caswell <matt@openssl.org> 2018-03-08 17:44:12 +0000
committer: Matt Caswell <matt@openssl.org> 2018-03-09 11:37:58 +0000
commit: e440f51395f10e307f720213bd75393e446024a3 (patch)
tree: ef5595dbe30c53cb2cb5c2e55a2c9ebaa47321a4 /ssl/statem/extensions_srvr.c
parent: 532f95783e2bff4d7f4e8086297ed8e0b25561f7 (diff)
1 files changed, 7 insertions, 2 deletions
diff --git a/ssl/statem/extensions_srvr.c b/ssl/statem/extensions_srvr.c
index bcabb858be..b9692f46e4 100644
--- a/ssl/statem/extensions_srvr.c
+++ b/ssl/statem/extensions_srvr.c
@@ -1682,10 +1682,15 @@ EXT_RETURN tls_construct_stoc_cookie(SSL *s, WPACKET *pkt, unsigned int context,
     EVP_PKEY *pkey;
     int ret = EXT_RETURN_FAIL;
 
-    if (s->ctx->app_gen_cookie_cb == NULL
-            || (s->s3->flags & TLS1_FLAGS_STATELESS) == 0)
+    if ((s->s3->flags & TLS1_FLAGS_STATELESS) == 0)
         return EXT_RETURN_NOT_SENT;
 
+    if (s->ctx->app_gen_cookie_cb == NULL) {
+        SSLfatal(s, SSL_AD_INTERNAL_ERROR, SSL_F_TLS_CONSTRUCT_STOC_COOKIE,
+                 SSL_R_NO_COOKIE_CALLBACK_SET);
+        return EXT_RETURN_FAIL;
+    }
+
     if (!WPACKET_put_bytes_u16(pkt, TLSEXT_TYPE_cookie)
             || !WPACKET_start_sub_packet_u16(pkt)
             || !WPACKET_start_sub_packet_u16(pkt)
author	Matt Caswell <matt@openssl.org>	2018-03-08 17:44:12 +0000
committer	Matt Caswell <matt@openssl.org>	2018-03-09 11:37:58 +0000
commit	e440f51395f10e307f720213bd75393e446024a3 (patch)
tree	ef5595dbe30c53cb2cb5c2e55a2c9ebaa47321a4 /ssl/statem/extensions_srvr.c
parent	532f95783e2bff4d7f4e8086297ed8e0b25561f7 (diff)