openssl

mirror of https://github.com/openssl/openssl.git synced 2025-02-05 14:10:53 +08:00

History

David Woodhouse 032924c4b4 Make DTLS1_BAD_VER work with DTLS_client_method() DTLSv1_client_method() is deprecated, but it was the only way to obtain DTLS1_BAD_VER support. The SSL_OP_CISCO_ANYCONNECT hack doesn't work with DTLS_client_method(), and it's relatively non-trivial to make it work without expanding the hack into lots of places. So deprecate SSL_OP_CISCO_ANYCONNECT with DTLSv1_client_method(), and make it work with SSL_CTX_set_{min,max}_proto_version(DTLS1_BAD_VER) instead. Reviewed-by: Rich Salz <rsalz@openssl.org> Reviewed-by: Matt Caswell <matt@openssl.org>	2016-08-04 20:56:24 +01:00
..
internal	Check for errors allocating the error strings.	2016-07-20 19:20:53 +02:00
openssl	Make DTLS1_BAD_VER work with DTLS_client_method()	2016-08-04 20:56:24 +01:00

David Woodhouse 032924c4b4 Make DTLS1_BAD_VER work with DTLS_client_method()

DTLSv1_client_method() is deprecated, but it was the only way to obtain
DTLS1_BAD_VER support. The SSL_OP_CISCO_ANYCONNECT hack doesn't work with
DTLS_client_method(), and it's relatively non-trivial to make it work without
expanding the hack into lots of places.

So deprecate SSL_OP_CISCO_ANYCONNECT with DTLSv1_client_method(), and make
it work with SSL_CTX_set_{min,max}_proto_version(DTLS1_BAD_VER) instead.

Reviewed-by: Rich Salz <rsalz@openssl.org>
Reviewed-by: Matt Caswell <matt@openssl.org>

2016-08-04 20:56:24 +01:00

internal

Check for errors allocating the error strings.

2016-07-20 19:20:53 +02:00

openssl

Make DTLS1_BAD_VER work with DTLS_client_method()

2016-08-04 20:56:24 +01:00