Fixed several coverity issues and a small issue in configuration files (accidental #can_define) statements.

matrixssl/matrixsslConfig.h

@@ -309,8 +309,8 @@ extern "C" {
 	SSL_DEFAULT_x_BUF_SIZE	value in bytes, maximum SSL_MAX_BUF_SIZE
  */
 #ifndef USE_DTLS
-#can_define	SSL_DEFAULT_IN_BUF_SIZE		1500		/* Base recv buf size, bytes */
-#can_define	SSL_DEFAULT_OUT_BUF_SIZE	1500		/* Base send buf size, bytes */
+#define	SSL_DEFAULT_IN_BUF_SIZE		1500		/* Base recv buf size, bytes */
+#define	SSL_DEFAULT_OUT_BUF_SIZE	1500		/* Base send buf size, bytes */
 #else
 /******************************************************************************/
 /**
@@ -320,9 +320,9 @@ extern "C" {
 	limitation in MatrixDTLS so connections will not succeed if a peer has a
 	PTMU set larger than this value.
 */
-#define DTLS_PMTU 1500/* 1500 Default/Maximum datagram len */
-#define SSL_DEFAULT_IN_BUF_SIZE DTLS_PMTU/* See PMTU comments above */
-#define SSL_DEFAULT_OUT_BUF_SIZE DTLS_PMTU/* See PMTU comments above */
+#define DTLS_PMTU  1500  /* 1500 Default/Maximum datagram len */
+#define SSL_DEFAULT_IN_BUF_SIZE		DTLS_PMTU  /* See PMTU comments above */
+#define SSL_DEFAULT_OUT_BUF_SIZE	DTLS_PMTU  /* See PMTU comments above */
 
 //#define DTLS_SEND_RECORDS_INDIVIDUALLY /* Max one record per datagram */
 #endif

matrixssl/sslEncode.c

@@ -4360,7 +4360,8 @@ static int32 writeCertificateStatus(ssl_t *ssl, sslBuf_t *out)
           } response;
       } CertificateStatus; */
 	*c = 0x1; c++;
-	*c = (unsigned char)((ocspLen & 0xFF0000) >> 16); c++;
+	/* ocspLen is 16 bit value. */
+	*c = 0; c++;
 	*c = (ocspLen & 0xFF00) >> 8; c++;
 	*c = (ocspLen & 0xFF); c++;
 	memcpy(c, ssl->keys->OCSPResponseBuf, ocspLen);