commit missing apps code for reneg fix

author: Dr. Stephen Henson <steve@openssl.org> 2009-11-11 14:10:09 +0000
committer: Dr. Stephen Henson <steve@openssl.org> 2009-11-11 14:10:09 +0000
commit: 5c33091cfa4ef2130994a17c9772ddc4793176ab (patch)
tree: f715463e00bb5075c0f8aaed14e8a804e697194e /apps/s_server.c
parent: 56327ebe6a7675001b382ca5e5531c598e1b2261 (diff)
1 files changed, 3 insertions, 0 deletions
diff --git a/apps/s_server.c b/apps/s_server.c
index cd15c965d2..8a08a30695 100644
--- a/apps/s_server.c
+++ b/apps/s_server.c
@@ -491,6 +491,7 @@ static void sv_usage(void)
 	BIO_printf(bio_err,"                 not specified (default is %s)\n",TEST_CERT2);
 	BIO_printf(bio_err," -tlsextdebug  - hex dump of all TLS extensions received\n");
 	BIO_printf(bio_err," -no_ticket    - disable use of RFC4507bis session tickets\n");
+	BIO_printf(bio_err," -legacy_renegotiation - enable use of legacy renegotiation (dangerous)\n");
 #endif
 	}
 
@@ -1014,6 +1015,8 @@ int MAIN(int argc, char *argv[])
 			verify_return_error = 1;
 		else if	(strcmp(*argv,"-serverpref") == 0)
 			{ off|=SSL_OP_CIPHER_SERVER_PREFERENCE; }
+		else if (strcmp(*argv,"-legacy_renegotiation") == 0)
+			off|=SSL_OP_ALLOW_UNSAFE_LEGACY_RENEGOTIATION;
 		else if	(strcmp(*argv,"-cipher") == 0)
 			{
 			if (--argc < 1) goto bad;
author	Dr. Stephen Henson <steve@openssl.org>	2009-11-11 14:10:09 +0000
committer	Dr. Stephen Henson <steve@openssl.org>	2009-11-11 14:10:09 +0000
commit	5c33091cfa4ef2130994a17c9772ddc4793176ab (patch)
tree	f715463e00bb5075c0f8aaed14e8a804e697194e /apps/s_server.c
parent	56327ebe6a7675001b382ca5e5531c598e1b2261 (diff)