PR: 1751

Submitted by: David Woodhouse <dwmw2@infradead.org> Approved by: steve@openssl.org Compatibility patches for Cisco VPN client DTLS.
author: Dr. Stephen Henson <steve@openssl.org> 2009-04-19 18:03:13 +0000
committer: Dr. Stephen Henson <steve@openssl.org> 2009-04-19 18:03:13 +0000
commit: b452f43322d1a39cc23526948fe67918f0a034a7 (patch)
tree: 97a72ef33fda1db1b317c56e95ab2f6bb8e081f1 /ssl/t1_enc.c
parent: 52891f832fe4693485efcd939de390065a752e43 (diff)
1 files changed, 2 insertions, 2 deletions
diff --git a/ssl/t1_enc.c b/ssl/t1_enc.c
index e351738237..d9cb059d0c 100644
--- a/ssl/t1_enc.c
+++ b/ssl/t1_enc.c
@@ -882,7 +882,7 @@ int tls1_mac(SSL *ssl, unsigned char *md, int send)
 			mac_ctx = &hmac;
 		}
 
-	if (ssl->version == DTLS1_VERSION)
+	if (ssl->version == DTLS1_VERSION || ssl->version == DTLS1_BAD_VER)
 		{
 		unsigned char dtlsseq[8],*p=dtlsseq;
 
@@ -911,7 +911,7 @@ printf("rec=");
 {unsigned int z; for (z=0; z<rec->length; z++) printf("%02X ",buf[z]); printf("\n"); }
 #endif
 
-	if (ssl->version != DTLS1_VERSION)
+	if (ssl->version != DTLS1_VERSION && ssl->version != DTLS1_BAD_VER)
 		{
 		for (i=7; i>=0; i--)
 			{
author	Dr. Stephen Henson <steve@openssl.org>	2009-04-19 18:03:13 +0000
committer	Dr. Stephen Henson <steve@openssl.org>	2009-04-19 18:03:13 +0000
commit	b452f43322d1a39cc23526948fe67918f0a034a7 (patch)
tree	97a72ef33fda1db1b317c56e95ab2f6bb8e081f1 /ssl/t1_enc.c
parent	52891f832fe4693485efcd939de390065a752e43 (diff)