diff options
author | Tomas Mraz <tomas@openssl.org> | 2022-05-12 08:41:14 +0200 |
---|---|---|
committer | Tomas Mraz <tomas@openssl.org> | 2022-05-27 08:49:19 +0200 |
commit | 1e5d20b1e2a5f20e8dc06bbf8fef17c844056360 (patch) | |
tree | 0b4cebaf1fd1c0db41cdd9b74d75f92aff7f1a93 /ssl/ssl_conf.c | |
parent | 410930363048d72e27a99862abd3e499c26f2792 (diff) |
Actually implement UnsafeLegacyServerConnect as documented
Fixes #18295
Reviewed-by: Paul Dale <pauli@openssl.org>
Reviewed-by: Ben Kaduk <kaduk@mit.edu>
(Merged from https://github.com/openssl/openssl/pull/18296)
(cherry picked from commit 65b2bb9ca0cff5e65938dc0d9dcd71c251bd67db)
Diffstat (limited to 'ssl/ssl_conf.c')
-rw-r--r-- | ssl/ssl_conf.c | 2 |
1 files changed, 2 insertions, 0 deletions
diff --git a/ssl/ssl_conf.c b/ssl/ssl_conf.c index f49b2e5a37..ecd85e050c 100644 --- a/ssl/ssl_conf.c +++ b/ssl/ssl_conf.c @@ -384,6 +384,8 @@ static int cmd_Options(SSL_CONF_CTX *cctx, const char *value) SSL_FLAG_TBL_SRV("ECDHSingle", SSL_OP_SINGLE_ECDH_USE), SSL_FLAG_TBL("UnsafeLegacyRenegotiation", SSL_OP_ALLOW_UNSAFE_LEGACY_RENEGOTIATION), + SSL_FLAG_TBL("UnsafeLegacyServerConnect", + SSL_OP_LEGACY_SERVER_CONNECT), SSL_FLAG_TBL("ClientRenegotiation", SSL_OP_ALLOW_CLIENT_RENEGOTIATION), SSL_FLAG_TBL_INV("EncryptThenMac", SSL_OP_NO_ENCRYPT_THEN_MAC), |