diff options
author | Dr. Stephen Henson <steve@openssl.org> | 2011-11-25 00:17:44 +0000 |
---|---|---|
committer | Dr. Stephen Henson <steve@openssl.org> | 2011-11-25 00:17:44 +0000 |
commit | ebba6c48958f5ceaea7ae0749a320e68943234bc (patch) | |
tree | 0833d365065c56456c0ba3a7bb2617259be378a0 /ssl/tls_srp.c | |
parent | 6f31dd72d28b5b2b75c50a54ed2666cab963922a (diff) |
PR: 1794
Submitted by: Peter Sylvester <peter.sylvester@edelweb.fr>
Reviewed by: steve
Make SRP conformant to rfc 5054.
Changes are:
- removal of the addition state after client hello
- removal of all pre-rfc srp alert ids
- sending a fatal alert when there is no srp extension but when the
server wants SRP
- removal of unnecessary code in the client.
Diffstat (limited to 'ssl/tls_srp.c')
-rw-r--r-- | ssl/tls_srp.c | 2 |
1 files changed, 1 insertions, 1 deletions
diff --git a/ssl/tls_srp.c b/ssl/tls_srp.c index 98925f702e..febddc7624 100644 --- a/ssl/tls_srp.c +++ b/ssl/tls_srp.c @@ -236,7 +236,7 @@ int SSL_srp_server_param_with_username(SSL *s, int *ad) unsigned char b[SSL_MAX_MASTER_KEY_LENGTH]; int al; - *ad = SSL_AD_UNKNOWN_SRP_USERNAME; + *ad = SSL_AD_UNKNOWN_PSK_IDENTITY; if ((s->srp_ctx.TLS_ext_srp_username_callback !=NULL) && ((al = s->srp_ctx.TLS_ext_srp_username_callback(s, ad, s->srp_ctx.SRP_cb_arg))!=SSL_ERROR_NONE)) return al; |