Skip to content

Commit

Permalink
Fix wrong dtls 1 and 1.2 version check
Browse files Browse the repository at this point in the history 
Reviewed-by: Matt Caswell <matt@openssl.org>
Reviewed-by: Tomas Mraz <tomas@openssl.org>
(Merged from #22366)
  • Loading branch information
@fwh-dc @t8m
fwh-dc authored and t8m committed Apr 4, 2024
1 parent 656d409 commit 1bb3507
Showing 1 changed file with 2 additions and 1 deletion.
3 changes: 2 additions & 1 deletion ssl/statem/statem_srvr.c
View file
Original file line number Diff line number Diff line change
Expand Up @@ -1960,8 +1960,9 @@ static int tls_early_post_process_client_hello(SSL_CONNECTION *s)
}

if (!s->hit
&& ssl_version_cmp(s, s->version, SSL_CONNECTION_IS_DTLS(s) ? DTLS1_VERSION : TLS1_VERSION) >= 0
&& s->version >= TLS1_VERSION
&& !SSL_CONNECTION_IS_VERSION13(s)
&& !SSL_CONNECTION_IS_DTLS(s)
&& s->ext.session_secret_cb != NULL) {
const SSL_CIPHER *pref_cipher = NULL;
/*
Expand Down

0 comments on commit 1bb3507

Please sign in to comment.