diff options
author | Benjamin Kaduk <bkaduk@akamai.com> | 2017-02-06 11:30:16 -0600 |
---|---|---|
committer | Richard Levitte <levitte@openssl.org> | 2017-02-23 19:24:37 +0100 |
commit | 60d685d196e8d594d754751e4852f01d80d8c0cc (patch) | |
tree | f8e7d0739c62f6a312fcc85004ebe811dba68aad /ssl/statem/statem_srvr.c | |
parent | 650c6e41d60905fa1396dff2c7fe4d6fbb7239ba (diff) | |
download | openssl-60d685d196e8d594d754751e4852f01d80d8c0cc.zip openssl-60d685d196e8d594d754751e4852f01d80d8c0cc.tar.gz openssl-60d685d196e8d594d754751e4852f01d80d8c0cc.tar.bz2 |
Let ssl_get_cipher_by_char yield not-valid ciphers
Now that we have made SCSVs into more of a first-class object, provide
a way for the bytes-to-SSL_CIPHER conversion to actually return them.
Add a flag 'all' to ssl_get_cipher_by_char to indicate that we want
all the known ciphers, not just the ones valid for encryption. This will,
in practice, let the caller retrieve the SCSVs.
Reviewed-by: Matt Caswell <matt@openssl.org>
Reviewed-by: Richard Levitte <levitte@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/2279)
Diffstat (limited to 'ssl/statem/statem_srvr.c')
-rw-r--r-- | ssl/statem/statem_srvr.c | 2 |
1 files changed, 1 insertions, 1 deletions
diff --git a/ssl/statem/statem_srvr.c b/ssl/statem/statem_srvr.c index ca020c5..2cbc219 100644 --- a/ssl/statem/statem_srvr.c +++ b/ssl/statem/statem_srvr.c @@ -3633,7 +3633,7 @@ STACK_OF(SSL_CIPHER) *ssl_bytes_to_cipher_list(SSL *s, } /* For SSLv2-compat, ignore leading 0-byte. */ - c = ssl_get_cipher_by_char(s, sslv2format ? &cipher[1] : cipher); + c = ssl_get_cipher_by_char(s, sslv2format ? &cipher[1] : cipher, 0); if (c != NULL) { if (!sk_SSL_CIPHER_push(sk, c)) { SSLerr(SSL_F_SSL_BYTES_TO_CIPHER_LIST, ERR_R_MALLOC_FAILURE); |