diff options
Diffstat (limited to 'src/lib/libressl/ressl.c')
| -rw-r--r-- | src/lib/libressl/ressl.c | 13 |
1 files changed, 12 insertions, 1 deletions
diff --git a/src/lib/libressl/ressl.c b/src/lib/libressl/ressl.c index 516afa53d6..b85fe04415 100644 --- a/src/lib/libressl/ressl.c +++ b/src/lib/libressl/ressl.c | |||
| @@ -1,4 +1,4 @@ | |||
| 1 | /* $OpenBSD: ressl.c,v 1.15 2014/09/29 15:11:29 jsing Exp $ */ | 1 | /* $OpenBSD: ressl.c,v 1.16 2014/09/29 15:31:38 jsing Exp $ */ |
| 2 | /* | 2 | /* |
| 3 | * Copyright (c) 2014 Joel Sing <jsing@openbsd.org> | 3 | * Copyright (c) 2014 Joel Sing <jsing@openbsd.org> |
| 4 | * | 4 | * |
| @@ -182,7 +182,18 @@ ressl_configure_ssl(struct ressl *ctx) | |||
| 182 | if ((ctx->config->protocols & RESSL_PROTOCOL_TLSv1_2) == 0) | 182 | if ((ctx->config->protocols & RESSL_PROTOCOL_TLSv1_2) == 0) |
| 183 | SSL_CTX_set_options(ctx->ssl_ctx, SSL_OP_NO_TLSv1_2); | 183 | SSL_CTX_set_options(ctx->ssl_ctx, SSL_OP_NO_TLSv1_2); |
| 184 | 184 | ||
| 185 | if (ctx->config->ciphers != NULL) { | ||
| 186 | if (SSL_CTX_set_cipher_list(ctx->ssl_ctx, | ||
| 187 | ctx->config->ciphers) != 1) { | ||
| 188 | ressl_set_error(ctx, "failed to set ciphers"); | ||
| 189 | goto err; | ||
| 190 | } | ||
| 191 | } | ||
| 192 | |||
| 185 | return (0); | 193 | return (0); |
| 194 | |||
| 195 | err: | ||
| 196 | return (-1); | ||
| 186 | } | 197 | } |
| 187 | 198 | ||
| 188 | void | 199 | void |