Bug 1553443, send session ticket only after handshake is marked as finished

Reviewers: mt Reviewed By: mt Bug #: 1553443 Differential Revision: https://phabricator.services.mozilla.com/D32128
author: Daiki Ueno <dueno@redhat.com> 2019-05-29 11:20:20 +0200
committer: Daiki Ueno <dueno@redhat.com> 2019-05-29 11:20:20 +0200
commit: 35f4b93733c418613f6cb59d326d76b4d7163ba4 (patch)
tree: 98179ffecc78aceeea716f14edba88bde49cb813 /lib/ssl
parent: 1b2664b5cd267842177ec6e2f37551b48300a58b (diff)
download: nss-hg-35f4b93733c418613f6cb59d326d76b4d7163ba4.tar.gz
1 files changed, 6 insertions, 2 deletions
diff --git a/lib/ssl/tls13con.c b/lib/ssl/tls13con.c
index 16f0b35bb..d68aa5a7c 100644
--- a/lib/ssl/tls13con.c
+++ b/lib/ssl/tls13con.c
@@ -4561,6 +4561,11 @@ tls13_ServerHandleFinished(sslSocket *ss, PRUint8 *b, PRUint32 length)
         return SECFailure;
     }
 
+    rv = tls13_FinishHandshake(ss);
+    if (rv != SECSuccess) {
+        return SECFailure;
+    }
+
     ssl_GetXmitBufLock(ss);
     if (ss->opt.enableSessionTickets) {
         rv = tls13_SendNewSessionTicket(ss, NULL, 0);
@@ -4573,8 +4578,7 @@ tls13_ServerHandleFinished(sslSocket *ss, PRUint8 *b, PRUint32 length)
         }
     }
     ssl_ReleaseXmitBufLock(ss);
-
-    return tls13_FinishHandshake(ss);
+    return SECSuccess;
 
 loser:
     ssl_ReleaseXmitBufLock(ss);
author	Daiki Ueno <dueno@redhat.com>	2019-05-29 11:20:20 +0200
committer	Daiki Ueno <dueno@redhat.com>	2019-05-29 11:20:20 +0200
commit	35f4b93733c418613f6cb59d326d76b4d7163ba4 (patch)
tree	98179ffecc78aceeea716f14edba88bde49cb813 /lib/ssl
parent	1b2664b5cd267842177ec6e2f37551b48300a58b (diff)
download	nss-hg-35f4b93733c418613f6cb59d326d76b4d7163ba4.tar.gz