Fix a bug in create_ssl_ctx_pair()
The max protocol version was only being set on the server side. It should have been done on both the client and the server. Reviewed-by: Richard Levitte <levitte@openssl.org> (Merged from https://github.com/openssl/openssl/pull/6113)
This commit is contained in:
parent
3bfa4756bd
commit
6021d8ec5a
1 changed files with 2 additions and 2 deletions
|
@ -531,10 +531,10 @@ int create_ssl_ctx_pair(const SSL_METHOD *sm, const SSL_METHOD *cm,
|
||||||
goto err;
|
goto err;
|
||||||
if (clientctx != NULL
|
if (clientctx != NULL
|
||||||
&& ((min_proto_version > 0
|
&& ((min_proto_version > 0
|
||||||
&& !TEST_true(SSL_CTX_set_min_proto_version(serverctx,
|
&& !TEST_true(SSL_CTX_set_min_proto_version(clientctx,
|
||||||
min_proto_version)))
|
min_proto_version)))
|
||||||
|| (max_proto_version > 0
|
|| (max_proto_version > 0
|
||||||
&& !TEST_true(SSL_CTX_set_max_proto_version(serverctx,
|
&& !TEST_true(SSL_CTX_set_max_proto_version(clientctx,
|
||||||
max_proto_version)))))
|
max_proto_version)))))
|
||||||
goto err;
|
goto err;
|
||||||
|
|
||||||
|
|
Loading…
Reference in a new issue