From 4a4054b5586eb7f1f3bc01afe9aa93a69a582dbe Mon Sep 17 00:00:00 2001
From: Dennis Jackson <djackson@mozilla.com>
Date: Fri, 5 May 2023 09:16:14 +0000
Subject: Bug 1829391 - Tidy up DTLS ACK Error Handling Path. r=mt

Differential Revision: https://phabricator.services.mozilla.com/D176156
---
 lib/ssl/dtls13con.c | 15 +++++++++++----
 1 file changed, 11 insertions(+), 4 deletions(-)

(limited to 'lib')

diff --git a/lib/ssl/dtls13con.c b/lib/ssl/dtls13con.c
index 5307419b6..a2cf4a8c6 100644
--- a/lib/ssl/dtls13con.c
+++ b/lib/ssl/dtls13con.c
@@ -460,11 +460,10 @@ dtls13_HandleAck(sslSocket *ss, sslBuffer *databuf)
     SSL_TRC(10, ("%d: SSL3[%d]: Handling ACK", SSL_GETPID(), ss->fd));
     rv = ssl3_ConsumeHandshakeNumber(ss, &length, 2, &b, &l);
     if (rv != SECSuccess) {
-        return SECFailure;
+        goto loser;
     }
     if (length != l) {
-        tls13_FatalError(ss, SSL_ERROR_RX_MALFORMED_DTLS_ACK, decode_error);
-        return SECFailure;
+        goto loser;
     }
 
     while (l > 0) {
@@ -473,7 +472,7 @@ dtls13_HandleAck(sslSocket *ss, sslBuffer *databuf)
 
         rv = ssl3_ConsumeHandshakeNumber64(ss, &seq, 8, &b, &l);
         if (rv != SECSuccess) {
-            return SECFailure;
+            goto loser;
         }
 
         for (cursor = PR_LIST_HEAD(&ss->ssl3.hs.dtlsSentHandshake);
@@ -521,6 +520,14 @@ dtls13_HandleAck(sslSocket *ss, sslBuffer *databuf)
         }
     }
     return SECSuccess;
+
+loser:
+    /* Due to bug 1829391 we may incorrectly send an alert rather than
+     * ignore an invalid record here. */
+    SSL_TRC(11, ("%d: SSL3[%d]: Error processing DTLS1.3 ACK.",
+                 SSL_GETPID(), ss->fd));
+    PORT_SetError(SSL_ERROR_RX_MALFORMED_DTLS_ACK);
+    return SECFailure;
 }
 
 /* Clean up the read timer for the handshake cipher suites on the
-- 
cgit v1.2.1