summaryrefslogtreecommitdiff
path: root/src/lib/libssl/t1_lib.c
diff options
context:
space:
mode:
authorjsing <>2014-05-30 14:01:11 +0000
committerjsing <>2014-05-30 14:01:11 +0000
commitd7bb67cc99974281f55641afa52a0f9e8f1ff938 (patch)
treefeaa5e2dc937f09df0609d84b0849a48c405df08 /src/lib/libssl/t1_lib.c
parent7388822d9393b64a9eb25e34c9bac56fb7f39f15 (diff)
downloadopenbsd-d7bb67cc99974281f55641afa52a0f9e8f1ff938.tar.gz
openbsd-d7bb67cc99974281f55641afa52a0f9e8f1ff938.tar.bz2
openbsd-d7bb67cc99974281f55641afa52a0f9e8f1ff938.zip
Make use of SSL_IS_DTLS, SSL_USE_EXPLICIT_IV, SSL_USE_SIGALGS and
SSL_USE_TLS1_2_CIPHERS. Largely based on OpenSSL head.
Diffstat (limited to 'src/lib/libssl/t1_lib.c')
-rw-r--r--src/lib/libssl/t1_lib.c7
1 files changed, 4 insertions, 3 deletions
diff --git a/src/lib/libssl/t1_lib.c b/src/lib/libssl/t1_lib.c
index b15465d550..fa70f21f95 100644
--- a/src/lib/libssl/t1_lib.c
+++ b/src/lib/libssl/t1_lib.c
@@ -2028,7 +2028,7 @@ tls1_process_ticket(SSL *s, unsigned char *session_id, int len,
2028 if (p >= limit) 2028 if (p >= limit)
2029 return -1; 2029 return -1;
2030 /* Skip past DTLS cookie */ 2030 /* Skip past DTLS cookie */
2031 if (s->version == DTLS1_VERSION || s->version == DTLS1_BAD_VER) { 2031 if (SSL_IS_DTLS(s)) {
2032 i = *(p++); 2032 i = *(p++);
2033 p += i; 2033 p += i;
2034 if (p >= limit) 2034 if (p >= limit)
@@ -2296,9 +2296,10 @@ tls1_process_sigalgs(SSL *s, const unsigned char *data, int dsize)
2296 const EVP_MD *md; 2296 const EVP_MD *md;
2297 CERT *c = s->cert; 2297 CERT *c = s->cert;
2298 2298
2299 /* Extension ignored for TLS versions below 1.2 */ 2299 /* Extension ignored for inappropriate versions */
2300 if (TLS1_get_version(s) < TLS1_2_VERSION) 2300 if (!SSL_USE_SIGALGS(s))
2301 return 1; 2301 return 1;
2302
2302 /* Should never happen */ 2303 /* Should never happen */
2303 if (!c) 2304 if (!c)
2304 return 0; 2305 return 0;
generated by cgit v1.2.3-55-g6feb (git 2.39.1) at 2025-08-14 23:17:42 +0000