a98d99a503
- make FIPS mode keygen bit length restriction enforced only when OPENSSL_ENFORCE_MODULUS_BITS is set
12 lines
459 B
Diff
12 lines
459 B
Diff
diff -up openssl-1.0.1h/ssl/s3_clnt.c.resumption openssl-1.0.1h/ssl/s3_clnt.c
|
|
--- openssl-1.0.1h/ssl/s3_clnt.c.resumption 2014-06-05 11:44:33.000000000 +0200
|
|
+++ openssl-1.0.1h/ssl/s3_clnt.c 2014-06-10 16:35:12.895096670 +0200
|
|
@@ -901,6 +901,7 @@ int ssl3_get_server_hello(SSL *s)
|
|
{
|
|
s->session->cipher = pref_cipher ?
|
|
pref_cipher : ssl_get_cipher_by_char(s, p+j);
|
|
+ s->s3->flags |= SSL3_FLAGS_CCS_OK;
|
|
}
|
|
}
|
|
#endif /* OPENSSL_NO_TLSEXT */
|