[openssl] OpenSSL_1_1_1-stable update

Dr. Paul Dale pauli at openssl.org
Tue Jun 30 01:14:25 UTC 2020


The branch OpenSSL_1_1_1-stable has been updated
       via  943c6daa491cb248750da1625d3f65b73bc77130 (commit)
      from  c437fc2d481ab62b76b11270293392649dd092d3 (commit)


- Log -----------------------------------------------------------------
commit 943c6daa491cb248750da1625d3f65b73bc77130
Author: Benny Baumann <BenBE at geshi.org>
Date:   Wed Jun 24 21:54:05 2020 +0200

    Force ssl/tls protocol flags to use stream sockets
    
    Prior to this patch doing something like
      openssl s_client -dtls1 -tls1 ...
    could cause s_client to speak TLS on a UDP socket
    which does not normally make much sense.
    
    Reviewed-by: Matt Caswell <matt at openssl.org>
    Reviewed-by: Tomas Mraz <tmraz at fedoraproject.org>
    Reviewed-by: Paul Dale <paul.dale at oracle.com>
    (Merged from https://github.com/openssl/openssl/pull/12266)
    
    (cherry picked from commit 2c9ba46c90e9d25040260bbdc43e87921f08c788)

-----------------------------------------------------------------------

Summary of changes:
 apps/s_client.c | 20 ++++++++++++++++++++
 1 file changed, 20 insertions(+)

diff --git a/apps/s_client.c b/apps/s_client.c
index 26a6789d81..4fc0af4ab6 100644
--- a/apps/s_client.c
+++ b/apps/s_client.c
@@ -1283,22 +1283,42 @@ int s_client_main(int argc, char **argv)
         case OPT_SSL3:
             min_version = SSL3_VERSION;
             max_version = SSL3_VERSION;
+            socket_type = SOCK_STREAM;
+#ifndef OPENSSL_NO_DTLS
+            isdtls = 0;
+#endif
             break;
         case OPT_TLS1_3:
             min_version = TLS1_3_VERSION;
             max_version = TLS1_3_VERSION;
+            socket_type = SOCK_STREAM;
+#ifndef OPENSSL_NO_DTLS
+            isdtls = 0;
+#endif
             break;
         case OPT_TLS1_2:
             min_version = TLS1_2_VERSION;
             max_version = TLS1_2_VERSION;
+            socket_type = SOCK_STREAM;
+#ifndef OPENSSL_NO_DTLS
+            isdtls = 0;
+#endif
             break;
         case OPT_TLS1_1:
             min_version = TLS1_1_VERSION;
             max_version = TLS1_1_VERSION;
+            socket_type = SOCK_STREAM;
+#ifndef OPENSSL_NO_DTLS
+            isdtls = 0;
+#endif
             break;
         case OPT_TLS1:
             min_version = TLS1_VERSION;
             max_version = TLS1_VERSION;
+            socket_type = SOCK_STREAM;
+#ifndef OPENSSL_NO_DTLS
+            isdtls = 0;
+#endif
             break;
         case OPT_DTLS:
 #ifndef OPENSSL_NO_DTLS


More information about the openssl-commits mailing list