Use enc_flags when deciding protocol variations.

Use the enc_flags field to determine whether we should use explicit IV, signature algorithms or SHA256 default PRF instead of hard coding which versions support each requirement. (cherry picked from commit cbd64894ec687c6f37d8e43c16dff78e63f6be87) Conflicts: ssl/ssl_locl.h
author: Dr. Stephen Henson <steve@openssl.org> 2013-03-13 15:33:24 +0000
committer: Dr. Stephen Henson <steve@openssl.org> 2013-09-18 13:46:02 +0100
commit: 1b6ab411d32f5fb07e8c69d50f22c298ba95e0ba (patch)
tree: bd950b952c07beea1bb5e8d562b7c1e6748798ea /ssl/t1_trce.c
parent: d88d98edd361eda5fc254e0b3dd24e682cb60983 (diff)
1 files changed, 2 insertions, 2 deletions
diff --git a/ssl/t1_trce.c b/ssl/t1_trce.c
index c603134821..f1efde2640 100644
--- a/ssl/t1_trce.c
+++ b/ssl/t1_trce.c
@@ -532,7 +532,7 @@ static int ssl_print_signature(BIO *bio, int indent, SSL *s,
 	{
 	if (*pmsglen < 2)
 		return 0;
-	if (TLS1_get_version(s) >= TLS1_2_VERSION)
+	if (SSL_USE_SIGALGS(s))
 		{
 		const unsigned char *p = *pmsg;
 		BIO_indent(bio, indent, 80);
@@ -1032,7 +1032,7 @@ static int ssl_print_cert_request(BIO *bio, int indent, SSL *s,
 		return 0;
 	msg += xlen;
 	msglen -= xlen + 1;
-	if (TLS1_get_version(s) < TLS1_2_VERSION)
+	if (!SSL_USE_SIGALGS(s))
 		goto skip_sig;
 	if (msglen < 2)
 		return 0;
author	Dr. Stephen Henson <steve@openssl.org>	2013-03-13 15:33:24 +0000
committer	Dr. Stephen Henson <steve@openssl.org>	2013-09-18 13:46:02 +0100
commit	1b6ab411d32f5fb07e8c69d50f22c298ba95e0ba (patch)
tree	bd950b952c07beea1bb5e8d562b7c1e6748798ea /ssl/t1_trce.c
parent	d88d98edd361eda5fc254e0b3dd24e682cb60983 (diff)