Disable all PSK if no callback.

Reviewed-by: Matt Caswell <matt@openssl.org>
2015-06-28 17:01:07 +01:00 · 2015-06-28 17:01:07 +01:00 · fe5eef3a3b
commit fe5eef3a3b
parent 332a251fd7
2 changed files with 2 additions and 2 deletions
--- a/ssl/s3_lib.c
+++ b/ssl/s3_lib.c
@ -3933,7 +3933,7 @@ SSL_CIPHER *ssl3_choose_cipher(SSL *s, STACK_OF(SSL_CIPHER) *clnt,

 #ifndef OPENSSL_NO_PSK
        /* with PSK there must be server callback set */
-        if ((alg_k & SSL_kPSK) && s->psk_server_callback == NULL)
+        if ((alg_k & SSL_PSK) && s->psk_server_callback == NULL)
            continue;
 #endif                          /* OPENSSL_NO_PSK */

--- a/ssl/t1_lib.c
+++ b/ssl/t1_lib.c
@ -1111,7 +1111,7 @@ void ssl_set_client_disabled(SSL *s)
    /* with PSK there must be client callback set */
    if (!s->psk_client_callback) {
        s->s3->tmp.mask_a |= SSL_aPSK;
-        s->s3->tmp.mask_k |= SSL_kPSK;
+        s->s3->tmp.mask_k |= SSL_PSK;
    }
 #endif                         /* OPENSSL_NO_PSK */
 #ifndef OPENSSL_NO_SRP