From e6cd50ed6c8c945707163c39e29378a644ff581e Mon Sep 17 00:00:00 2001
From: Alper Akcan <alper.akcan@gmail.com>
Date: Sat, 10 Jun 2017 16:12:52 +0300
Subject: [PATCH] - fix mis calculation of read_left if queue already has some
 data, which might not be bigger than ssl_header_size - update q->ptr only if
 q->data is changed

---
 ssl/ssl_analyze.c | 6 ++++--
 1 file changed, 4 insertions(+), 2 deletions(-)

diff --git a/ssl/ssl_analyze.c b/ssl/ssl_analyze.c
index 39465de..dde5b54 100644
--- a/ssl/ssl_analyze.c
+++ b/ssl/ssl_analyze.c
@@ -347,7 +347,9 @@ static int read_ssl_record(obj,q,seg,offset,lastp,offsetp)
 
     switch(q->state){
       case SSL_READ_NONE:
-	q->read_left=SSL_HEADER_SIZE;
+	if (SSL_HEADER_SIZE<q->len)
+	  ABORT(-1);
+	q->read_left=SSL_HEADER_SIZE-q->len;
 	if(r=read_data(q,seg,offset,&last,&offset))
 	  ABORT(r);
         
@@ -374,9 +376,9 @@ static int read_ssl_record(obj,q,seg,offset,lastp,offsetp)
 	  if(!(q->data=realloc(q->data,rec_len+5)))
 	    ABORT(R_NO_MEMORY);
 	  q->_allocated=rec_len+SSL_HEADER_SIZE;
+	  q->ptr=q->data+SSL_HEADER_SIZE;
 	};
 
-	q->ptr=q->data+SSL_HEADER_SIZE;
 	q->read_left=rec_len;
 	
       case SSL_READ_HEADER: