diff options
author | Dr. Stephen Henson <steve@openssl.org> | 2011-11-25 00:18:10 +0000 |
---|---|---|
committer | Dr. Stephen Henson <steve@openssl.org> | 2011-11-25 00:18:10 +0000 |
commit | 2c7d978c2d4db664d1c5d164685480eed818d281 (patch) | |
tree | c61562b448898555f5f964e86cf62d5a0fc6a805 /ssl/t1_enc.c | |
parent | 8cd897a42c973ed3a76ef1946f0d9eda1b6b12ec (diff) |
PR: 1794
Submitted by: Peter Sylvester <peter.sylvester@edelweb.fr>
Reviewed by: steve
Make SRP conformant to rfc 5054.
Changes are:
- removal of the addition state after client hello
- removal of all pre-rfc srp alert ids
- sending a fatal alert when there is no srp extension but when the
server wants SRP
- removal of unnecessary code in the client.
Diffstat (limited to 'ssl/t1_enc.c')
-rw-r--r-- | ssl/t1_enc.c | 3 |
1 files changed, 0 insertions, 3 deletions
diff --git a/ssl/t1_enc.c b/ssl/t1_enc.c index a28bb7d229..1c6fe5d82a 100644 --- a/ssl/t1_enc.c +++ b/ssl/t1_enc.c @@ -1242,9 +1242,6 @@ int tls1_alert_code(int code) case SSL_AD_BAD_CERTIFICATE_STATUS_RESPONSE: return(TLS1_AD_BAD_CERTIFICATE_STATUS_RESPONSE); case SSL_AD_BAD_CERTIFICATE_HASH_VALUE: return(TLS1_AD_BAD_CERTIFICATE_HASH_VALUE); case SSL_AD_UNKNOWN_PSK_IDENTITY:return(TLS1_AD_UNKNOWN_PSK_IDENTITY); -#ifndef OPENSSL_NO_SRP - case SSL_AD_MISSING_SRP_USERNAME:return(TLS1_AD_MISSING_SRP_USERNAME); -#endif #if 0 /* not appropriate for TLS, not used for DTLS */ case DTLS1_AD_MISSING_HANDSHAKE_MESSAGE: return (DTLS1_AD_MISSING_HANDSHAKE_MESSAGE); |