From 8826a1aec546beb4999029370746b8e76d6bff60 Mon Sep 17 00:00:00 2001
From: Philippe Antoine <contact@catenacyber.fr>
Date: Fri, 18 Dec 2020 22:12:23 +0100
Subject: [PATCH] ssl: reset state when breaking out of
 SSLV3_HANDSHAKE_PROTOCOL

So that we cannot resumt it with corrupted values

(cherry picked from commit eb460cf78dadc874633a57571245acf2911a6b6e)
---
 src/app-layer-ssl.c | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/src/app-layer-ssl.c b/src/app-layer-ssl.c
index ba921db089..dd23d0b46b 100644
--- a/src/app-layer-ssl.c
+++ b/src/app-layer-ssl.c
@@ -2377,6 +2377,8 @@ static int SSLv3Decode(uint8_t direction, SSLState *ssl_state,
                         ((ssl_state->flags & SSL_AL_FLAG_STATE_SERVER_HELLO) == 0)) {
                     /* do nothing */
                 } else {
+                    // if we started parsing this, we must stop
+                    ssl_state->curr_connp->hs_bytes_processed = 0;
                     break;
                 }
             }
-- 
2.47.2