diff options
| author | tb <> | 2020-05-23 13:00:30 +0000 |
|---|---|---|
| committer | tb <> | 2020-05-23 13:00:30 +0000 |
| commit | 6aaa71524fb63f15a7b380ada15b019cfa250176 (patch) | |
| tree | dae6f61c84cf5824026401aa2c67f09e3eaf73c8 | |
| parent | 0cc3e8df7b9aba3df87c3ae71630950a0b4c8f9e (diff) | |
| download | openbsd-6aaa71524fb63f15a7b380ada15b019cfa250176.tar.gz openbsd-6aaa71524fb63f15a7b380ada15b019cfa250176.tar.bz2 openbsd-6aaa71524fb63f15a7b380ada15b019cfa250176.zip | |
While the second SSL_CTX in this code is only used on servername
callback, so its mode is not used to update the ssl's mode, it
seems more appropriate to clear the SSL_MODE_AUTO_RETRY flag on
it as well.
ok jsing
| -rw-r--r-- | src/usr.bin/openssl/s_server.c | 3 |
1 files changed, 2 insertions, 1 deletions
diff --git a/src/usr.bin/openssl/s_server.c b/src/usr.bin/openssl/s_server.c index dbf59ad854..2ff142dab8 100644 --- a/src/usr.bin/openssl/s_server.c +++ b/src/usr.bin/openssl/s_server.c | |||
| @@ -1,4 +1,4 @@ | |||
| 1 | /* $OpenBSD: s_server.c,v 1.37 2020/05/23 12:52:54 tb Exp $ */ | 1 | /* $OpenBSD: s_server.c,v 1.38 2020/05/23 13:00:30 tb Exp $ */ |
| 2 | /* Copyright (C) 1995-1998 Eric Young (eay@cryptsoft.com) | 2 | /* Copyright (C) 1995-1998 Eric Young (eay@cryptsoft.com) |
| 3 | * All rights reserved. | 3 | * All rights reserved. |
| 4 | * | 4 | * |
| @@ -1033,6 +1033,7 @@ s_server_main(int argc, char *argv[]) | |||
| 1033 | goto end; | 1033 | goto end; |
| 1034 | if (!SSL_CTX_set_max_proto_version(ctx2, max_version)) | 1034 | if (!SSL_CTX_set_max_proto_version(ctx2, max_version)) |
| 1035 | goto end; | 1035 | goto end; |
| 1036 | SSL_CTX_clear_mode(ctx2, SSL_MODE_AUTO_RETRY); | ||
| 1036 | } | 1037 | } |
| 1037 | if (ctx2) { | 1038 | if (ctx2) { |
| 1038 | BIO_printf(bio_s_out, "Setting secondary ctx parameters\n"); | 1039 | BIO_printf(bio_s_out, "Setting secondary ctx parameters\n"); |