generic-library/openssl
1
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity

Use client version when deciding which cipher suites to disable.

Browse Source 
(backport from HEAD)
This commit is contained in:
Dr. Stephen Henson 2012-12-26 17:09:39 +00:00
parent 684a2264c5
commit 53bb723834
1 changed files with 1 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
ssl/t1_lib.c
View File

@ -957,7 +957,7 @@ void ssl_set_client_disabled(SSL *s)
c->mask_a = 0;
c->mask_k = 0;
/* If less than TLS 1.2 don't allow TLS 1.2 only ciphers */
if (TLS1_get_version(s) < TLS1_2_VERSION)
if (TLS1_get_client_version(s) < TLS1_2_VERSION)
c->mask_ssl = SSL_TLSV1_2;
else
c->mask_ssl = 0;